Download free GDPR compliance checklist!

Tag Archives for " cookies "

Google Chrome 82 to Enhance Privacy via New Cookie Settings

Google is making progress on expanding the control users have over cookies in the Chrome browser with a new flag in Canary that enables an improved interface with more buttons and information.

The new Cookies user interface in Canary for Android shows four controls instead of just two currently available in the stable version of the browser. One option can prevent websites from reading and saving cookie data when browsing in incognito mode. The other option allows you to block all cookies.

Source: Google Chrome 82 to Enhance Privacy via New Cookie Settings

Publishers Are Wary Of New Tech That Wants To Use Their First-Party Cookies

With the clock ticking on third-party cookies, publishers will soon be the only part of the ad ecosystem with direct relationships with their readers.

The identity-preserving workarounds pitched by agencies and buy-side ad tech often involve using a publisher’s first-party cookie to store information, and allowing outside partners to call up these first-party cookie records (often via API) and stitch them together to understand identity.

Other solutions use local storage or have a publisher create a new subdomain (a CNAME record) for the ad tech company that allows them to set first-party cookies. Then, buyers can essentially recreate the identity that powers the open web.

Unfortunately, most – though not all – of these solutions fail to meet publishers’ privacy compliance criteria, and many feel these are temporary workarounds vs. true innovations.

Full article: Publishers Are Wary Of New Tech That Wants To Use Their First-Party Cookies | AdExchanger

EU publishes revised draft ePrivacy Regulation

The Presidency of the Council of the European Union on 21 February 2020 published revised text of the proposed ePrivacy Regulation (Regulation concerning the Respect for Private Life and the Protection of Personal Data in Electronic Communications and Repealing Directive 2002/58/EC (Regulation on Privacy and Electronic Communications)).

New draft introduces the possibility to process metadata for legitimate interests, as well as to use the processing and storage capabilities of terminal equipment, and to collect information from end-users’ terminal equipment when it is necessary for the purpose of the legitimate interests pursued by the service provider, except when such interest is overridden by the interests or fundamental rights and freedoms of the end-user. That is big change compared to existing regulation requiring user’s consent.

Draft ePrivacy Regulation

The state of tracking and data privacy in 2020

January 2020 felt like a turning point. CCPA went into effect, Google Chrome became the latest browser to commit to a cookie-less future and, after months of analytics folks sounding the alarm, digital marketers sobered to a vision of the future that looks quite different than today.

Here’s where search marketers find themselves in the current entanglement of data and privacy and where we can expect it to go from here.

Read full article: The state of tracking and data privacy in 2020 – Marketing Land

GDPR Subverted by Cookie Consent Tools

New study suggests that many websites are navigating around GDPR by tailoring the design of their cookie consent tools and using dark patterns to provide a misleading veneer of a consent agreement.

According to the researchers, the study illustrates “the extent to which illegal practices prevail, with vendors of CMPs turning a blind eye to — or worse, incentivising — clearly illegal configurations of their systems.”

Source: GDPR Subverted by Cookie Consent Tools, Study Reveals – CPO Magazine

CNIL launches a public consultation on its draft recommendation on “cookies and other trackers”

On 4 July 2019, the CNIL published guidelines on the application of Article 82 of the French Data Protection Act. This article governs actions aiming at storing or gaining access to information already stored in the terminal of a user, i.e. in particular the use of cookies or other trackers when a user visits a website.

The CNIL conducted a consultation during the fall of 2019, in order to prepare a draft recommendation proposing operational procedures for obtaining consent. This draft is now subject to public consultation until 25 February, with a view to preparing the final version of the recommendation.

Source: CNIL launches a public consultation on its draft recommendation on “cookies and other trackers”

Google Chrome to drop third-party cookies by 2022

Chrome will replace third-party cookies with browser-based tools and techniques aimed at balancing personalization and privacy.

Google announced support for third-party cookies in its Chrome browser would be phased out “within two years.” The company seeks to replace them with a browser-based mechanism.

Google’s stated objective is to create “a secure environment for personalization that also protects user privacy.” Google says that for ad targeting it’s “exploring how to deliver ads to large groups of similar people without letting individually identifying data ever leave [the] browser.”

Source: Google Chrome: Third-party cookies will be gone by 2022 – MarTech Today

Research reveals that most websites are not compliant with GDPR and ePrivacy Directive

Research has found that only 11.8% of consent management platforms (CMPs) meet the minimal requirements under GDPR and Europe’s eDirective regulations regarding cookies and consent.

A study conducted by researchers at MIT CSAIL, Denmark’s Aarhus University and University College London, analysed how prevalent CMP designs impact people’s consent choices.

Full article: #Privacy: Research reveals that most websites are not compliant with GDPR

Belgian Supervisory Authority Imposes Cookie Fine

On December 17, 2019, the Belgian Supervisory Authority imposed a fine of €15,000 on an company operating a legal information website with approximately 35,000 unique monthly visitors for violations regarding use of cookies.

According to supervisory authority, company provided insufficient information about the cookies deployed on the website. Moreover, the cookie policy was only available in English, whereas the website targeted Dutch and French-speaking readers.

Further, the website did not obtain opt-in consent for certain types of cookies used, including first-party analytics cookies, and where consent was obtained, it was not sufficiently granular. Also, there was no easy way for users to withdraw consent.

Source: Belgian Supervisory Authority Imposes Cookie Fine

Max Schrems Files GDPR Complaints with French DPA on Cookie Use

European privacy advocacy group None of your business (NOYB)—led by Max Schrems—announced it had filed three formal complaints with the French data protection authority (CNIL) against three French websites for  sending digital signals to tracking companies claiming that users had agreed to be tracked online, despite the same users rejecting such cookies.

Despite users going through the trouble of “rejecting” countless cookies on the French eCommerce page CDiscount, the movie guide Allocine.fr and the fashion magazine Vanity Fair, these webpages have sent digital signals to tracking companies claiming that users have agreed to being tracked online.

Source: Say “NO” to cookies – yet see your privacy crumble? | noyb.eu

1 2 3 6