What does the GDPR govern?

Regulation (EU) 2016/679, the European Union's new General Data Protection Regulation ("GDPR"), regulates the processing by an individual, a company or an organisation of personal data relating to individuals in the EU. It doesn't apply to the processing of personal data of deceased persons or of legal entities. The rules don't apply to data processed by an individual for purely personal reasons or for activities carried out in one's home, provided there is no connection to a professional or commercial activity. When an individual uses personal data outside the personal sphere, for socio-cultural or financial activities, for example, then the data protection law has to be respected.

What are personal data?

It is any information that relates to an identified or identifiable living individual. For example: name, surname, home address, e-mail address, location data.

When the regulation applies

A company with an establishment in the EU provides travel services to customers based in the Baltic countries and in that context processes personal data of natural persons.

When the regulation doesn't apply

An individual uses their own private address book to invite friends via email to a party that they are organising (household exception).

What non-compliant organizations risk

Non-compliant organizations risk fines of up to €20 million, or 4% of the organization's global yearly turnover!



dmsCookie helps to comply with EU e-Privacy Directive and GDPR.


Choose what cookies are strictly necessary.


Your visitors can withdraw their consent at any time.


Use this solution on any platform.


A list of options gives you flexibility never seen before.


Designed to work on all most popular browsers and mobile devices.


You only need to copy & paste code snippet on your website.


dmsCookie allows you to block first-party and third-party cookies.

dmsCookie Premium allows you to collect and record visitor consents as required by GDPR. For each "I agree" click dmsCookie stores the following data:

  1. Unique key that is saved in visitor's cookies; this key can be used to check if user actually gave consent
  2. User action accept / reject.
  3. Masked IP address of a visitor last digits are set to X, so it is not considered as private data.
  4. Date and time when user clicked the button date and time currently is taken from user browser, so you have to adjust for possible timezone differences.
  5. Web page where consent was given.
  6. User browser agent

All the data mentioned abowe can be viewed online and downloaded in Excel or CSV format.

None of the data above can be considered private data, so you do not need any extra consent from user to use dmsCookie.


If you have further questions, desire more information or want to speak with one of our advisors, fill out the form below. We will get back to you as soon as possible.