top | item 34098435

(no title)

medbrane | 3 years ago

But serverside tracking without consent would still be illegal, right? GDPR does not make a difference between cookies and other mechanisms.

discuss

thaumasiotes|3 years ago

Setting cookies involves you telling all your visitors that you're tracking them. How would the server-side tracking be detected?

janosdebugs|3 years ago

Fingerprinting still requires a lot of client-side information. Sending that to the server for no good reason may prompt some questions.

jefftk|3 years ago

I expect Microsoft would still disclose it in their privacy policy. Or be vulnerable to a whistleblower.

tracker1|3 years ago

Fair enough... didn't know, since I'm in the US and don't deal with EU on a business level.

jefftk|3 years ago

Not clear in this case, since while detecting ad fraud doesn't meet the "strictly necessary" requirements of ePrivacy (necessary for storing the cookie on your machine) it is still an open question whether the GDPR requires user consent for it. (Lawyers at advertising companies think that you don't, but that doesn't mean they're right)

wkat4242|3 years ago

It is but it's a hell of a lot harder to prove.