ePrivacy Directive for SaaS & Software
The ePrivacy Directive governs electronic communications privacy, covering cookies, email marketing, and confidentiality of communications. Its replacement (ePrivacy Regulation) is pending but the Directive remains law.
In force — update expected 2025-2026
Per member state (typically up to €20M)
Telecommunications, Digital Services, E-commerce
What ePrivacy means for SaaS & Software
SaaS & Software organisations operating in the EU must comply with ePrivacy obligations. Below are the key requirements that apply to your sector.
- Obtain consent for cookies and tracking
- Honour opt-out for direct marketing
- Protect confidentiality of communications
- Notify breaches to authorities
- Implement privacy by default
Does ePrivacy apply to your SaaS & Software business?
Find out in 2 minutes with our free regulation checker.
Check now — freeRelated Resources
ePrivacy Full Guide
Complete ePrivacy compliance guide for all sectors
Regulation Checker
Find out which EU regulations apply to your organisation
💳 ePrivacy for Fintech & Financial Services
ePrivacy requirements for Fintech & Financial Services organisations
🏥 ePrivacy for Healthcare & MedTech
ePrivacy requirements for Healthcare & MedTech organisations
🏭 ePrivacy for Manufacturing & Industry
ePrivacy requirements for Manufacturing & Industry organisations
🛒 ePrivacy for E-commerce & Retail
ePrivacy requirements for E-commerce & Retail organisations
🎓 ePrivacy for EdTech & Education
ePrivacy requirements for EdTech & Education organisations
Last updated:
For informational purposes only. This is not legal advice — consult qualified legal counsel.