• Nyfure@kbin.social
    link
    fedilink
    arrow-up
    152
    arrow-down
    1
    ·
    11 months ago

    The real MVPs are websites not needing a cookie banner because they only use required cookies for which you dont need a banner.

    • manucode@infosec.pub
      link
      fedilink
      arrow-up
      9
      arrow-down
      1
      ·
      11 months ago

      They still have to inform you, right? Like with some banner at the edge of the page telling that they use cookies, just no need for a popup asking you to accept or decline.

      • DrCake@lemmy.world
        link
        fedilink
        arrow-up
        45
        ·
        11 months ago

        No it’s only for tracking cookies. If you just have cookies for login, for example, then there’s no need to ask permission

        • Sprucie@feddit.uk
          link
          fedilink
          arrow-up
          38
          ·
          11 months ago

          And what tells you is how fucked the internet is since almost every single webpage asks to use tracking cookies.

          • Zpiritual@lemm.ee
            link
            fedilink
            arrow-up
            18
            ·
            11 months ago

            There is also the problem of sites without tracking cookies having banners just to be on the safe side.

  • msage@programming.dev
    link
    fedilink
    arrow-up
    86
    arrow-down
    2
    ·
    11 months ago

    Just FYI - it’s mandatory to have a button like that next to the ‘Accept all’.

    Every site that doesn’t do it should be reported.

      • TheyCallMeHacked@discuss.tchncs.de
        link
        fedilink
        arrow-up
        23
        ·
        11 months ago

        The serious answer is to whatever your country’s internet regulation agency is (assuming your in the EU, else you’re out of luck). So for example, in France that would be the CNIL, in Germany it’s the BfDI, etc.

        • Nyfure@kbin.social
          link
          fedilink
          arrow-up
          9
          ·
          11 months ago

          Just FYI Germany likes to make things more difficult, so with federation every sub-area is separated in many aspects and has own agencies for different things…

          BfDI is only responsible for health and internet-provider institutions (and a few more).
          Otherwise you can send it to the one where the company is located at, or always where you are located at. (they will forward it, but that can take a few months, so better to submit where it has to go).

    • Imgonnatrythis@sh.itjust.works
      link
      fedilink
      arrow-up
      20
      ·
      11 months ago

      If that’s so it’s incredibly poorly enforced to the point where complaining is unlikely to have any effect at all. Most Sites have a button that leads To a secondary menu where cookie preferences can be set. Perhaps this meets the mandate you speak of? It’s a much more common setup.

  • Blackmist@feddit.uk
    link
    fedilink
    English
    arrow-up
    43
    arrow-down
    2
    ·
    11 months ago

    Or just sites that don’t need a consent popup because they don’t sell your shit.

    • SirQuackTheDuck@lemmy.world
      link
      fedilink
      arrow-up
      12
      ·
      11 months ago

      “well, we’re not selling it, we’re just using 247 advertising agencies to measure the general performance of our site. Nothing targeted, we’d never do that.” - totally legit companies that absolutely value user rights

      /s, if that wasn’t obvious enough.

  • cobysev@lemmy.world
    link
    fedilink
    English
    arrow-up
    34
    arrow-down
    1
    ·
    11 months ago

    NEVER click decline all. There are loopholes built in that still grant access to “legitimate interest” cookies, which are recognized differently from “consent cookies.” If you click reject all, it still allows collection of certain personal info through cookies labeled legitimate interest. Which is entirely up to advertisers to categorize.

    As annoying as it is, always open up options and manually uncheck cookies.

      • Zink@pawb.social
        link
        fedilink
        English
        arrow-up
        18
        arrow-down
        2
        ·
        11 months ago

        People moved away from “I want to make a living” to “I need every ounce of money I can get”

        • cerement@slrpnk.net
          link
          fedilink
          arrow-up
          16
          arrow-down
          1
          ·
          edit-2
          11 months ago

          capitalism removed the “I want to make a living” option and forced everyone into “I need every ounce of money I can get just to survive”

    • myster0n@feddit.nl
      link
      fedilink
      arrow-up
      6
      ·
      11 months ago

      With TCF 2.2 “legitimate interest” is no longer allowed (but that’s probably only for IAB members). At our company we already had a rule where we disabled all “legitimate interests” from our vendors, so I assume there are other companies that do the same.

  • Reznik@feddit.de
    link
    fedilink
    arrow-up
    27
    ·
    11 months ago

    In Firefox 120+ about:config -> cookiebanners.service.mode 2 (from 0)

    No addons required.

      • NationProtons@lemmy.world
        cake
        link
        fedilink
        English
        arrow-up
        10
        ·
        11 months ago

        This seems to be the config: cookiebanners.service.mode = 1 (reject all) or 2 (reject all or fall back to accept all).

        So on 2 it would reject all, and if not possible, accept all.

        • Contend6248@feddit.de
          link
          fedilink
          arrow-up
          1
          ·
          edit-2
          11 months ago

          So it’s about balance annoyance and privacy again.

          First i was a bit confused, but i quickly found a site i use regular which needs you to accept the cookies or buy premium.

          There’s where stuff like Cookie Autodelete comes into play, they can have their cookie, but it will be thrown away the second their site is closed.

          So you can use mode 2 for less annoyance and still throw them in the garbage

    • Swarfega@lemm.ee
      link
      fedilink
      English
      arrow-up
      1
      ·
      11 months ago

      You can also enable the easy list for cookies in uBlock Origin. It misses some but for the most part it works.

    • FierySpectre@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      11 months ago

      I’ve had that running for a while now, sadly some sites give you the option “accept all cookies” or “deny all by getting a monthly subscription” which if using this extension will automatically redirect you.

      Aside from that little downside it has made browsing so much better.

  • arc@lemm.ee
    link
    fedilink
    arrow-up
    12
    ·
    11 months ago

    Some US news websites still geoblock European visitors rather than fix their site to not track the ever loving fuck out of visitors who say no. So imagine what they’re doing to their domestic visitors.

    • BirdyBoogleBop@lemmy.dbzer0.com
      link
      fedilink
      arrow-up
      9
      ·
      11 months ago

      I liked it when some news sites did plain text only if you didn’t accept cookies. So no cookies, no ads and don’t have to deal with your crappy css? Why would I ever accept that? It was wonderful.

  • TWeaK@lemm.ee
    link
    fedilink
    English
    arrow-up
    11
    ·
    11 months ago

    But does it really decline all, or are you agreeing to their “legitimate interest” of stealing your data?

    Data collection is theft, change my mind.

      • TWeaK@lemm.ee
        link
        fedilink
        English
        arrow-up
        2
        ·
        11 months ago

        Man the worst I saw was a petrol station, when you walked in up to the tills there was this little sign on a floppy plastic thing that said they had face recognition running and a QR code to scan. The text of the sign mentioned “legitimate interests” but in no way directed users to scan the code and go to the website to object their consent.

        It’s such bullshit. These companies collect up the data we produce and sell it for pure profit, without offering anything in return. The data brokerage industry is worth multiple trillions of $ per year, with only $8bn people in the world it stands to reason that the average user’s data is worth $1,000 per year, but they just pick that out of our pockets and use it against us.

        • Einar@lemm.ee
          link
          fedilink
          arrow-up
          2
          ·
          11 months ago

          Sounds super shady. I’d venture that that would be illegal in Europe.

          • TWeaK@lemm.ee
            link
            fedilink
            English
            arrow-up
            2
            ·
            11 months ago

            Thankfully the UK isn’t in any Europe anymore! Just say you’re legitimately interested and you can steal user data without any sort of thing!

  • cosmicrookie@lemmy.world
    link
    fedilink
    arrow-up
    9
    ·
    edit-2
    11 months ago

    See our legitimate partners (1724)…

    I don’t want my data sent to 1724 partners just because i am curious to see what that click bait of a title really meant