Post AUe4mNz62MINRW5XY8 by jwildeboer@social.wildeboer.net
(DIR) More posts by jwildeboer@social.wildeboer.net
(DIR) Post #AUdQ4PF00YBAQp06zo by jwildeboer@social.wildeboer.net
2023-04-14T06:25:20Z
1 likes, 4 repeats
Tech bros love to whine about "The EU cookie policy" that simply doesn't exist the way they imagine it. All these popups are the most radical way to interpret the explicit consent demanded by regulations. An ongoing provocation by the ad/tracker industry to blame their ruthless data hoarding on the EU.
(DIR) Post #AUdQ4dRZCcYCTqzLWq by jwildeboer@social.wildeboer.net
2023-04-14T06:32:24Z
1 likes, 5 repeats
Every time you see such a cookie consent pop-up, you know you are on a website that has accepted to share your data with some data hoarding entity. That they are willing to hand over parts of the page content to be filled by a 3rd party. And allow that 3rd party to aggregate and sell their visitors data to the highest bidder. So stop blaming "the EU" and ask yourself if this is the internet we want.
(DIR) Post #AUdQ4ll0IEqsGS8yw4 by jwildeboer@social.wildeboer.net
2023-04-14T06:37:33Z
0 likes, 1 repeats
The ad/tracker mafia used the same tactics to ruin the DNT (Do Not Track) flag that we had years ago. Because they simply don't WANT to give users an option to simply say no. And they have convinced their customers that ruining the web with these popups is the only acceptable way to work. And these customers just accept that.
(DIR) Post #AUdS8KPs5UKyXE5HXc by khoji@ieji.de
2023-04-14T07:14:46Z
0 likes, 1 repeats
@jwildeboer Also: If you see the words “We value your privacy”, know that this is actually doublespeak for “We value your data, it pays for our yachts”.
(DIR) Post #AUdWetEIaTsvadSA2C by powersource@sunbeam.city
2023-04-14T07:10:16Z
0 likes, 0 repeats
@jwildeboer i think we tried to add some very basic website feature and concluded we might have to add a banner in that case. Can't remember what it was though. I think we still don't have the banner.
(DIR) Post #AUdWetwFx32xmy1GYC by jwildeboer@social.wildeboer.net
2023-04-14T07:13:12Z
1 likes, 0 repeats
@powersource It's why I build static webpages with no external dependencies. No google fonts, no javascript libraries from a 3rd party or CDN. Also makes my sites blazingly fast with minimal server resources needed. Less is more :)
(DIR) Post #AUdnFJC97oQZoMpm40 by jwildeboer@social.wildeboer.net
2023-04-14T06:51:53Z
1 likes, 1 repeats
To make this very clear: user/visitor consent is only needed for data typically going to 3rd parties. All cookie laws, including GDPR and CCPA, allow essential first-party cookies to be exempt from collecting user consent before performing their actions. So the simple, non-persistent session cookie on your site DOES NOT need a consent popup AT ALL. Regardless of what the ad/tracker "industry" tries to insinuate.
(DIR) Post #AUdnFL0APK29PnFEfY by jwildeboer@social.wildeboer.net
2023-04-14T10:10:31Z
0 likes, 2 repeats
And finally: This all IMHO. My personal frustration. The web wasn't created to be an invasive data collection engine in the hands of a few. It became what it is for many reasons. But it doesn't have to stay that way. Do your little part. Create static pages whenever that's sufficient. Resist including external scripts/tracker stuff. We can return to a #BetterWeb :) Yes, I am that optimistic!
(DIR) Post #AUdnFMjvweEko1fIe0 by jwildeboer@social.wildeboer.net
2023-04-14T10:46:15Z
0 likes, 0 repeats
OK. Some more clarifications now that this thread has hit Hacker News. For cookies under GDPR consent is needed for the "not strictly necessary" ones. This typically means all 3rd party (tracking) cookies that are not strictly needed for the website to work. 1/n
(DIR) Post #AUdnFRzMQiY35JvBsu by jwildeboer@social.wildeboer.net
2023-04-14T10:48:51Z
0 likes, 0 repeats
Strictly necessary cookies, like simple session cookies that are valid until the end of the session and used e.g. to store/refernce form inputs ARE exempted. This typically boils down to 1st party cookies. BUT. If you store not strictly necessary information in that same or another 1st party cookie, consent is needed. 2/n
(DIR) Post #AUdnFUWP0qAOwNObfE by jwildeboer@social.wildeboer.net
2023-04-14T10:50:14Z
0 likes, 0 repeats
If you use technologies like analytics and DO NOT store individual information about the data subject (GDPR lingo for user/visitor) like IP address you again are exempted. 3/n
(DIR) Post #AUdnFWJ0NcdeTP8w3k by jwildeboer@social.wildeboer.net
2023-04-14T10:52:44Z
0 likes, 0 repeats
Does this sound complicated? Yes. But not that much, IMHO. Whenever you store information that contains PII (Personal Identifiable information) that is not strictly necessary for your site to work, you need consent.. BUT that does NOT mean these gargantuan popups with a gazillion of options the ad/tracking "industry" forces upon us. A simple yes/no is sufficient and actually mandated. 4/n
(DIR) Post #AUdnFYpgz3yQJMS4Ho by jwildeboer@social.wildeboer.net
2023-04-14T11:01:59Z
0 likes, 0 repeats
A good example: https://european-union.europa.eu/index_en A non-intrusive bar at the bottom with a clear choice. That doesn't block using the site (until you agree, the site treats you as if you have not agreed. Simple). With a link to clearly written explanation.
(DIR) Post #AUduzVXUGFV361nCiW by niclas@angrytoday.com
2023-04-14T12:38:08Z
0 likes, 0 repeats
@jwildeboer Every now and then I check the list of "3rd parties" (with the silly option to on/off each one individually) and the list exceeded 300 companies.But isn't it also that outside EU, there is no "cookies popup", or?The current situation is insane, and I don't understand why almost no one cares about it.
(DIR) Post #AUe1RfAce4sUnfuGZM by jwildeboer@social.wildeboer.net
2023-04-14T13:40:29Z
0 likes, 0 repeats
@corfiot I did talk to lawyers. The exemption for essential functionality is real and definitely covers simple session cookies that do not store data that allows identifying a data subject and that expire after the session.
(DIR) Post #AUe2cz2JDzNjYKyokq by jwildeboer@social.wildeboer.net
2023-04-14T13:49:51Z
1 likes, 0 repeats
@corfiot Here's a helpful page from the EU itself: https://europa.eu/youreurope/business/dealing-with-customers/data-protection/online-privacy/index_en.htm
(DIR) Post #AUe4mNz62MINRW5XY8 by jwildeboer@social.wildeboer.net
2023-04-14T14:21:19Z
0 likes, 0 repeats
@corfiot And my lawyer has a different opinion. Since quite some years. We are both not lawyers, I gather, so let's just stop all of this back and forth. Every website owner/operator should do the due diligence needed (I did) and act accordingly (I do, my website doesn't need any cookies, so no consent needed. On top of that my Webserver does not even write logfiles, so there's that too)
(DIR) Post #AUeCG5mOzAt7LfGMGO by OpenComputeDesign@linuxrocks.online
2023-04-14T15:51:08Z
0 likes, 0 repeats
@jwildeboer I've said it before, and I'll say it again. If when a company asks "Do you agree to our terms to use this software you already payed for" or "do you agree to our terms to use this website you have no choice but to use", that's not actually consent. The way our society looks at consent is fundamentally broken. Making something legal with consent is the same thing as making coercion and ransom legal.Until governments make it legal to refuse to use blackboard on a $1000+ college class, to be able to keep your @bigdomain email address whenever they change their privacy policy, and to allow mirroring of important information by anyone who's willing to take the time, the government hasn't done a damn thing to stop this bullshit.
(DIR) Post #AUeMt43kJYgKqfb6X2 by allenstenhaus@oddballs.vip
2023-04-14T17:50:40Z
0 likes, 0 repeats
@khoji @jwildeboer "We are an equal opportunity employer" means "We're hoping to hire as many women & minorities as possible because we know we can pay you less."
(DIR) Post #AUeU7nM7Or8549A7Bw by charles_perkins@mastodon.sdf.org
2023-04-14T19:11:46Z
0 likes, 0 repeats
@khoji @jwildeboer "we value your privacy" at 10¢ on the open market
(DIR) Post #AUhiTCsNgzvJ86EjPE by chucker@norden.social
2023-04-16T08:36:38Z
0 likes, 0 repeats
@OpenComputeDesign @jwildeboer > I've said it before, and I'll say it again. If when a company asks "Do you agree to our terms to use this software you already payed for" or "do you agree to our terms to use this website you have no choice but to use", that's not actually consent.This is why some countries have a shrink wrap doctrine: if you can’t see the agreement before removing the shrink wrap, it isn’t a legally meaningful agreement.
(DIR) Post #AUiHSNoF3Qcf91dwCu by OpenComputeDesign@linuxrocks.online
2023-04-16T15:08:41Z
0 likes, 0 repeats
@chucker @jwildeboer OMFG it's beautiful 😢
(DIR) Post #AVD2Z3jcH58FXOgReK by jwildeboer@social.wildeboer.net
2023-05-01T09:21:52Z
0 likes, 0 repeats
And if you really care about the basics: this document from 2012(!) explains in quite a lot of detail which cookies are exempted and which are not: https://ec.europa.eu/justice/article-29/documentation/opinion-recommendation/files/2012/wp194_en.pdf
(DIR) Post #AVD2Z4P5msJDc25ZIW by Tij@eientei.org
2023-05-01T11:17:48.864756Z
0 likes, 0 repeats
@jwildeboer stop talking to yourself wtf