A cookie notice that seeks permission to share your details with “848 of our partners” and “actively scan device details for identification”.
And the EU has forced us to answer that goddamn “do you accept cookies?” question on every frigging website. How many people just click “accept all” to get on with things?
The EU has forced them to give us the option. Previously, they’d do all of that shit without telling you.
THAT IS A BIG FAT LIE! The EU did not force any such thing. The EU simply said that people’s data cannot be used without consent. This is the website asking for consent.
Website developers have a perfectly valid choice not to collect any data. They chose their profits above your privacy.
I have a website and I don’t have a popup asking for consent, because I don’t need to, because I don’t collect any data.
Cookie Auto-Delete helps with that.
There’s cookie lists in uBlock Origin. Just enable them.
ok to be honest i’d rather have the choice to accept or decline it and waste a couple seconds then having all of that enabled by default with no way to reject them
I have the ghosrtery extension on Firefox, I have it set to auto reject all tracking cookies, and reject all third party “legitimate interest” cookies. I’ve heard there’s other extensions that do the same, and maybe better, but I already have it set the way I want.
2 days and this post has fewer likes than number of companies that get your data for visiting the Verge. Holy crap, that’s terrifying
Is it really so hard to copy and paste the text? Down voted. Don’t do that again.
Privacy Notice
We and our 848 partners store and access personal data, like browsing data or unique identifiers, on your device. Selecting “I Accept” enables tracking technologies to support the purposes shown under “we and our partners process data to provide,” whereas selecting “Reject All” or withdrawing your consent will disable them. If trackers are disabled, some content and ads you see may not be as relevant to you. You can resurface this menu to change your choices or withdraw consent at any time by clicking the [“privacy preferences”] link on the bottom of the webpage [or the floating icon on the bottom-left of the webpage, if applicable]. Your choices will have effect within our Website. For more details, refer to our Privacy Policy. Cookie Policy. Ways we may use your data:
Actively scan device characteristics for identification. Use precise geolocation data. Develop and improve services. Create profiles to personalise content. Measure advertising performance. Use limited data to select advertising. Use limited data to select content. Use profiles to select personalised content. Create profiles for personalised advertising. Measure content performance. Use profiles to select personalised advertising. Understand audiences through statistics or combinations of data from different sources. Store and/or access information on a device.
List of Partners (vendors)
oh hell naw not this terrible communist instance
Who the hell asked you?
You don’t have OCR in your eyes 😮? Or do you use a screen reader, there must be screen readers that can OCR, tho, or are there none?
Accessibility standards require us to not put text in images. Its not hard to copy and paste the text.
What standards?
W3C is the big one that I know
But surely there’s others as well
Is it really so hard to
copy and paste the textlook at the image? Down voted. Don’t do that again.Dictation apps have trouble with text in images, which is tough for people with impaired vision
That seems like a lemmy limitation that probably needs worked on (i.e. prompting for alt text for images so apps can just read the alt text and folks are reminded to think of it).
😮so there is really no OCR in those dictation apps 🤯? Is there a OCR API in iOS? If so, it should not be too hard integrating it into an app 🤔 I assume
For blind peope, yes. Asshole. This is why we have rules against posting images of text.
There are nicer ways to say this.
“For the sightly impaired, indeed my good chum! Tis the crux of why we uphold our most sacred vows in the context of textual imagery.”
I’m colorblind for what it’s worth and I don’t go around yelling at people for making badly colored charts I can’t understand in the rudest way possible.
The image captures the web page design / the cookie banner, it’s more than “just the words” so for a non-blind person “just post the text” is actually arguably a downgrade.
I mean this is literally the purpose of alt text, so that you can share an image and its description (which in this case should contain all the text from the image) and screen readers can do their thing.
I actually didn’t realize their was support for alt-text. The clients I’ve used the few times when I’ve posted images … I don’t recall even prompting for alt text.
But you should, since there are accessibility rules against low contrast.
Just because there’s a “rule” that exists somewhere in the abstract, that doesn’t mean folks should assail people for innocent mistakes. It’s also not a rule of this community. It’s not a rule of the instance this community is a part of. It’s most definitely not a rule of “the platform.”
In fact, these the W3C (the body most people are seemingly citing as a source for rules) isn’t even calling their “rules”, rules. They call them “guidelines” https://www.w3.org/WAI/standards-guidelines/.
Ya, I’m colorblind, but you’re probably not and you probably didn’t think about it. You’re just some random person on the internet, you’ve probably got plenty of other things to worry about than hunting down the latest WC3 publication on accessibility.
To be clear, I do let folks know if there’s a chart I’m interested in reading that I can’t read, try to give feedback about colorblind relevant stuff, etc. (literally last night I was on the Deadlock forums giving Valve accessibility feedback). I just do it in a “matter of the fact” fashion and try to explain what I’m struggling with rather than with an attitude and command that they change something without any context.
is it really so hard to look at the image
Uuuuuuuh… Have you considered that there are people who have problems with their eyes or are outright blind?
Don’t be an ass again.
That doesn’t include the partners of their partners
I blame all these polyamorous relationships with barely any rules.
We all have a fundamental right to privacy, which is constantly violated. Not just on a daily basis, but on a minute by minute basis.
But to play devil’s advocate for a moment to assuage some FUD around posts like this, how many of the absurd amount of cookies overlap in otherwise innoculous ways. For instance, product tracking cookies. Say you bought a pumpkin on Amazon, and that drops a gorde cookie, a pumpkin spice cookie, a cornucopia cookie etc.
That’s certainly not the same as buy a pumpkin, track your location around the nearest pumpkin patch, read your grandma’s emails about pumpkins, and collect information to determine your likelihood of buying another pumpkin based on your sexual orientation.
The latter certainly exists, but does anyone know much about the former? How prevalent would they be in that 850?
Hate when they remove the reject all button
Consent-o-matic browser extension can handle a lot of cookie banners and automatically rejects all possible cookies.
I used to rely on Consent-O-Matic a lot, but I’m somewhat uncomfortable by the fact that the extension has full access to all web page content. I mean I understand why, but I’m still uncomfortable with it. In the end I ended up uninstalling it because it broke some sites so that they wouldn’t load at all, or got stuck into an infinite reload loop. On majority of cases it works alright though.
Yea, every extension has full access to any website, if you not make use of a whitelist/blacklist.
Some extensions, such as SponsorBlock for YouTube actually limit themselves so they can only operate when the browser is on youtube.com. This can be declared in the extension manifest. It’s a separate permission to access data on all web sites vs. access data on a specific website.
Not helpful when something like Consent-o-matic needs to operate on every possible website with a cookie banner.
I have had the same concerns, since watching it click through things faster than I can see is scary. Maybe some day someone sneaks in a cookie banner detector that activates on banking pages to steal your money? uBlock Origin has similar risks, but at least it’s not actively controlling browser inputs.
Reject all is actually you agreeing on the legitimate interests loophole so this is also problematic.
Yea… That is true. But I think, if uBlock blocks the banner, consent would not be able to reject/approve anything. Think of it as a fallback solution 😇well in my case.
But some pages stiff you by disabling scroll capability if you hide the banner
Javascript is the problem there
Yep, but some pages load the text content programmatically, so even if you switch to reader mode you only get the blurb
Yeah they get skipped or opened on Brave incognito
Yea, I tend to not use those sites and search for alternatives or archived versions. Sometimes you can scroll while reloading the page until scrolling is blocked again.
Please explain.
Oh alr thank you
The most effective solution is just to wipe all cookies every time you close your browser, or creating strict cookie whitelists. Actually managing cookies on webpages is for normies.
No? If you accept tracking while on the page, this has consequences on your current session
Still doesn’t get rid of the popup, for that I use ublock origin.
I like grid for that because it’s by default per-site permissions and also by default allows the sites own cookies while blocking any cookies for other domains.
It can involve some trial and error to get things working if the site uses a CDN or third party services for functionality, but I’ve found that it hasn’t yet been necessary to enable any 3rd party cookies to get any functionality working (at least none that I wanted to get working, maybe other sites that use Google or fb accounts would automatically log me in if I had those ones enabled, but those are things I specifically want to block).
Usually I’ll just need to enable some scripts and media from CDNs.
I hate nearly everything about web 2.0, if I could thanos snap away Javascript and CSS I would it with zero remorse or regret. Humanity was happier before CDNs.
The only way for the site to know to not show the pop-up again is ironically by saving that information in a cookie
Or you could block all cookies from all associated domains and use uBlock Origin element picker to hide the popup.
I’m tired of expecting service and site owners to be human beings, and have learned the tools needed to curate my own experience. Hell I used to browse with javascript off for years until every shitbag UI graduate decided to cram it into every single site regardless of applicability.
Sounds like a job for the Mullvad browser, since that clears cookies on every restart by default.
Firefox Focus does this as well if you’re on a phone!
Sadly that is not an option for firefox on android yet (while it is on desktop), the only choises you are left with are:
- Use ff focus that completely resets the browser deleting every cookie in the process
- Use normal ff and:
- Just accept that you have to deal with cookies and care to carefully select Reject on every banner
- Turn on delete data on “exit button press” (which sadly deletes everything again, with no possibility to whitelist some websites).
That said, i believe Firefox should have (even on android) their “total cookie protection” thing which puts them in separate containers for each domain, so you are somewhat protected by cookie cross-tracking, but i would still prefer to delete most of them at close.
Having seem the inside of some of these trackers, I can assure you that cross-domain “protection” is a furphy. Also, 848 partners is small fries. For shits and giggles you should turn on network logging on Firefox or Chrome and open any modern news website.
Yea, 😂, I was very shocked on the amount of server contacted when I first time installed a pi-hole and opened a local news page while being on piHole webUI to test if it works.
Sadly that is not an option for firefox on android yet
Eh?
I was talking about there being no option to whitelist some websites to keep their cookies, and as you can see it is not present there, while the desktop versione has it
Oh, right.
You could try an extension: https://addons.mozilla.org/en-US/android/addon/cookiewhitelist/
and then every time you visit that one good news site, you have to go through their cookie banner each time. That or install a cookie-denying addon and hope that they don’t sellout or sell your data.
You have a total of four choices:
1a. Wipe all their cookies every time, reject them every time they ask.
1b. Wipe all their cookies every time, accept them every time they ask. 2a. Don’t wipe cookies, keep the “essential” ones. 2b. Don’t wipe cookies, accept all our most of them.2b is the only scenario where you might not get asked again. 1b is the easiest no thanks.
I use the duck duck go browser because it makes that the default and offers to whitelist sites for cookies if you log into them (but you can turn that off in settings). It also autorejects a lot of cookies that use common popups.
2a seems the most rational, no?
Also maybe switch to mullvad-browser instead of DDG browser, since DDG has some controversies (search: “Zach Edwards” on the wiki) on what data it saves.
Thank you. Where can I find the wiki?
Edit: Wired says
DuckDuckGo Created a Privacy Exception for Microsoft Cybersecurity and privacy researcher Zach Edwards discovered a glaring hole in the privacy protections of DuckDuckGo’s purportedly privacy-focused browser: By examining the browser’s data flows on Facebook-owned website Workplace.com, Edwards found that the site’s Microsoft-placed tracking scripts continued to communicate back to Microsoft-owned domains like Bing and LinkedIn. DuckDuckGo CEO Gabriel Weinberg responded to Edwards on Twitter, admitting that “our search syndication agreement prevents us from stopping Microsoft-owned scripts from loading”—essentially admitting that a partnership deal DuckDuckGo struck with Microsoft includes creating a carveout that lets Microsoft track users of its browsers. Weinberg added that DuckDuckGo is “working to change that.” (A company spokesperson reiterated in an email to WIRED Weinberg’s assertion that none of this applies to DuckDuckGo search, adding that both its search and its browser offer more privacy protections than the competition.) In the meantime, the revelation blew a glaring hole of its own in the company’s reputation as a rare privacy-preserving tech firm. Turns out this surveillance capitalism thing is pretty hard to escape.
In the EU and UK this is also forbidden as rejecting should be as simple as accepting cookies.
In theory yes, in practice “uh-huh.”
Bruh
I just implemented a cookie consent bar on my company’s website and the agencies/vendors who advertise for us were giving me so much shit for having reject available right away. But thankfully our Legal department said keep it there… Or else. “Hands tied… Soooooorry!”
World’s nosiest polycule
They like to watch.
Yea because I want a news site to have my precise geolocation data.
I’m on the verge.
848 partners? Damn I hope y’all got tested.
Now name them all.
I think you actually usually can get them to list them all, never much interested, they’re all going to be completely random names you never heard of, just so long as I can reject them all, that’s all I care about, otherwise I have to browse a different website on principle.
I feel there’s inflation over the word ‘partners’
I’d like to see a cookie notice that just says “it’s your browser, figure out how to get it to handle cookies however you want. If you accept cookies we’re gonna use them and you can safely assume we’ll use them for anything and everything they might be useful for. European regulators can eat a bag of dicks.”
Me: *logs on to their website*
Them:
Well. I appreciate the honesty… I guess.
Alternative if the first one doesn’t tickle your fancy.
https://github.com/cavi-au/Consent-O-Matic
This is for legal reasons mostly. They don’t think anyone reads this so they went for the most blunt and transparent language, which also gives them the most legal certainty. The banner is missing the reject all button though, which in Europe is seen as required by many of the privacy regulators.
Took me 5 seconds to go to The Verge, click the “Manage Settings” button, and Reject All is there. Why even spout this nonsense without trying it yourself?
You underestimate people’s laziness and their burn out. An extra click to reject all is an extra click people won’t bother with. I literally used to go all the extra steps to reject these things, even when a reject all button was not provided. Plus I’ve found that sometimes the reject all button doesn’t actually reject all, and there are a few hidden settings still left to uncheck. It’s ridiculous. It should be 1 click, just like hitting accept is 1 click. The ease of use should be 1:1. I was getting burned out by those extra clicks and all that manual checking that took like 20s-2mins of my time. That adds up. All to read a single paragraph on some website? Bruh. Used to do this until I discovered ublock origin has settings that can be used to block cookie consent forms.
To you, one extra click is no big deal, like a paper cut of inconvenience. To me, it’s the thousandth papercut I’ve received. I am tired of it.
How is it nonsense?
The EU law is that the reject all should be exactly as easy as the accept all button. 1 extra click, however minor of an inconvenience it is, is extra effort. And therefore strictly speaking in violation of the law.
Nothing will ever happen but it’s valid criticism.
Why did you edit your comment? At least own it.
Big oof here. Maybe make sure you understand what you’re talking about before criticizing others?
Reject all will most likely be in the settings submenu. Websites are annoying and hide that function as far away as possible.
It is.
