Website Rules in Austria
Austrian websites must include an Impressum under the ECG §5 and Mediengesetz §§24-25. The DSB enforces GDPR with a focus on cookies and tracking.
Data protection authority:
Datenschutzbehörde
(DSB)
Requirements
3
country-specific rules
Guides
11
guides available
Specific requirements for Austria
Impressum (ECG §5 + Mediengesetz)
Austrian law requires website identification under ECG §5 (E-Commerce-Gesetz) and media disclosure under Mediengesetz §§24-25. Both must be accessible from every page.
DSB enforcement
The Austrian DSB was the first EU DPA to rule that Google Analytics transfers to the US violated GDPR (January 2022, noyb complaint).
Cookie consent
Austria follows the standard GDPR/ePrivacy approach to cookies. The DSB has aligned with the EDPB guidelines on valid consent.
Enforcement in Austria
The Austrian DSB made international headlines in January 2022 when it ruled — following a noyb complaint — that using Google Analytics violates GDPR because data is transferred to the US without adequate protection. This decision influenced similar rulings across France, Italy, and other EU member states. The DSB has also fined companies for using cookie banners that lacked a clear reject option.
Official resources
Guides for Austria
EAA Penalties: What Happens If Your Website Isn't Accessible
The European Accessibility Act is enforceable. Here are the penalties for non-compliance and what enforcement looks like in practice.
GDPR Fines for Small Businesses: Real Cases and Amounts
Real GDPR fines for small businesses run from about 1,000 to 50,000 EUR. See published regulator decisions, what triggers enforcement and how to avoid it.
GDPR Compliance Checklist for Your Website (2026)
A practical GDPR checklist for small business websites. Check cookies, privacy policy, consent forms, and tracking scripts.
Are Copytrack and PicRights Claims Legitimate? (EU Guide)
How to verify whether a Copytrack or PicRights copyright claim is legitimate under EU law: the mandate test, the originality test and what to do next.
Contact Form GDPR Requirements: Article 13 Compliance
What a GDPR-compliant contact form needs: Article 13 information, the right legal basis (legitimate interest vs precontractual), unchecked boxes, retention.
Google Analytics and GDPR: Is GA4 Legal in the EU? (2026)
Can you use Google Analytics 4 in the EU? The consent requirement, the EU-US DPF transfer mechanism, Consent Mode v2 limits and cookieless alternatives.
How Much Does a Copyright Claim Actually Cost? (EU)
How much a copyright claim costs in the EU: real settlement ranges for Getty Images, Copytrack and PicRights demands plus what drives the price up or down.
Product Liability Directive 2024/2853: 9 Dec 2026
Directive (EU) 2024/2853 makes software and AI 'products' for strict liability on 9 Dec 2026. What it means for SMBs, and what it does not change.
The EU AI Act for Website Owners (2026)
Article 50 applies 2 Aug 2026. For most SMB sites it creates almost no new obligations. Here's the honest checklist before the deadline.
YouTube Embed and GDPR: Cookie-Free Approaches
Standard YouTube embeds place tracking cookies before consent. Two compliant patterns under GDPR: youtube-nocookie.com and click-to-load facade, with code.
Cookie Banner Requirements Under EU Law (2026 Guide)
Cookie banner requirements in the EU 2026: reject equal to accept, no dark patterns, prior consent. EDPB Guidelines 05/2020 explained.
Check your website for Austria requirements
Our scanner checks for Austria-specific requirements automatically.
I understand this is a technical scan, not legal advice, and I accept the Terms.