Cookie consents on websites has gained increased focus since the adoption of the General Data Protection Regulation (GDPR) in the EU.
There are specific categories for cookies defined under the GDPR, as seen in your Privacy Preference Center and Cookie Declaration on Secure Privacy. As you know, cookie consent must be granular and specific because of GDPR - your website visitors need to know for what purposes you serve the cookies, as well as have the ability to deny those cookies or to consent to.
For example, if your visitor consents to the use capabilities of "Social media" cookies that collect personal data (like Twitter, etc), still a separate consent has to be explicitly given to "Media player" services (like YouTube, etc) and other cookies under different categories as well.
Then, what are the Essential cookies and why they can not be unselected?
Essential cookies are strictly necessary for the basic functionality of your website. An essential cookie remembers a given user (session) as they browse your site. For example, essential cookies keep track of what page a user is on, or from what account a user is accessing your site. Under the Cookie Law and the GDPR, essential cookies and strictly necessary cookies are the same, and these necessary trackers don’t require user consent.
Other Cookie categories you may see inside Preference Center and/or Cookie categorization -
- Preferences and Media player— Unlike essential cookies, these cookies are used to supplement your site’s functionality but aren’t necessary. For example, these cookies can help play videos on your site.
- Analytics and Customer interaction— When it comes to the GDPR and tracking cookies, analytics cookies are used to track and analyze user behavior, therefore website owners and operators are concerned about disabling these cookies without explicitly given cookie consent from a visitor.
- Advertising — Advertising cookies are a common form of a third-party cookie. If you display ads on your site, those third-party ad owners may track your users through cookies attached to their advertisements. And like for any third-party cookie providers, under GDPR compliance, it is your GDPR liability, and therefore you should exercise caution when using advertising cookies of your ad vendor.
- Social media, Comments — If you have any subscribe, like or share buttons/features on your site that connects with any social media platform, you turn to use social media cookies. By nature, these cookies are third-party for most sites.