Coming to a website near you this summer: the European Commission is close to a ‘solution’ that could force people to use their government-issued ID to get online. EDRi and EFF’s concerns about threats to everyone’s privacy and data protection, a chilling effect on access to information, and digital exclusion – harming the already most marginalised in society - remain unsolved.
you’ve never had to ask for permission to store cookies that are required for your site to work. you have to ask for permission for third party trackers to store cookies when people use your site. it’s just that web developers either can’t read or can’t live without letting google track their users’ every move.
That’s also not entirely correct.
You don’t need to ask permission for cookies that are strictly necessary for your site to work. They can contain personally identifiable information (PII) but only to the extent that is strictly required for the functionality to work. If your “required” cookie does anything more than what is strictly necessary (such as collecting more PII than it needs or has built in tracking) you need to ask consent.
If you’re using something like on premise tracking, like Matomo, then you still have to ask permission. There are some exceptions like if you don’t use cookies and you don’t track PII.
And just for extra clarification, if you are collecting PII (for example into logs) you need to ask permission even when you’re not storing any cookies.
yeah but that’s gdpr, not the cookie law.
My bad. For some reason I associate all the consent pop-ups with GDPR as I don’t remember any pop-ups prior to GDPR.
yeah the cookie law was way earlier, like 2010. gdpr was 2016.
we both know it’s the second one :P