Having clarified the prohibitions, let's move on to illustrate the correct method to request consent for the release of cookies to users who visit a page. What must a website operator do to obtain valid and perfectly legal consent? The updated Guidelines roughly confirm the original plant dating back to 2014, with some important clarifications. First, you need to show a banner during the first login. The banner itself must have these characteristics: an "X" located at the top right, useful for closing the section or banner, and some clarifications relating to the cookie policy and user information, as long as both tables do not have too many items, as an excess of information could ruin the user's user experience. It should be noted that closing the banner is equivalent to a refusal regarding the release of profiling cookies. In this regard, it is mandatory that the banner inform the user that closing it implies acceptance of the default settings. As mentioned above, the banner must contain a short information section that refers to the importance and nature of cookies, also adding a link to the cookie policy. It is also necessary to indicate the retention period of the information and the general retention criteria. Finally, the banner must also include a second link, which leads the user within the area in which to select or deselect the profiling cookies issued by third-party suppliers (eg Facebook or Google) . This function is difficult to implement technically as cookies are issued by third parties, the control is limited.