France: National Commission on Informatics and Liberty investigation into Shein over alleged unauthorised cookie placement and inadequate consent mechanisms
Progress
Current status
in force
01 Sep 2025 in force
31 Jul 2023 under deliberation
Scope
Implementers
France
Policy Area
Data governance
Policy Instrument
Data protection regulation
Regulated Economic Activity
platform intermediary: e-commerce
Government Branch
executive
Government Body
data protection authority
Implementation Level
national
Timeline of events
National Commission on Informatics and Liberty fined Shein EUR 150 million over unauthorised cookie placement and inadequate consent mechanisms
On 1 September 2025, the National Commission on Informatics and Liberty (CNIL) fined Infinite Styles Services Limited, the Irish subsidiary of the Shein group, EUR 150 million for breaches of rules on cookies. The fine was imposed following an inspe…
SourceEvent type
investigation
Action type
ruling
Government branch
executive
Government body
data protection authority
National Commission on Informatics and Liberty opened investigation into Shein over alleged unauthorised cookie placement and inadequate consent mechanisms
On 31 July 2023, the National Commission on Informatics and Liberty (CNIL) launched an investigation into Infinite Styles Services Limited, the Irish subsidiary of the SHEIN group, to assess its compliance with consent requirements for the placement…
SourceEvent type
investigation
Action type
announcement
Government branch
executive
Government body
data protection authority