France: Issued CNIL ruling in investigation into Yahoo over their cookies policy imposing a fine of EUR 10 million

On 29 December 2023, the French Data Protection Authority (CNIL) issued a ruling in its investigation into YAHOO EMEA LIMITED (Yahoo) over their cookies policy, imposing a fine of EUR 10 million for violations related to cookies. Yahoo is a California-based web services provider. The CNIL had conducted several inspections in October 2020 and June 2021 on the "Yahoo.com" website and the "Yahoo! Mail" email service. CNIL determined that these actions constituted a breach of Article 82 of the Data Protection Act, as Yahoo failed to honor the preferences ofIinternet users who declined cookies on its "Yahoo.com" website and restricted users of its "Yahoo! Mail" messaging service from easily withdrawing their consent for cookie usage.