Comment by dessant
6 years ago
I think extensions can filter out the x-client-data header, though Google should definitely make this data collection opt-in.
GDPR is very clear about this data being personal information [1], since Google has access to the IP address on the receiving end, which has been repeatedly tested in courts as being personal data.
Google is engaging in personal data harvesting without user consent and control, and no amount of mental gymnastics presented in their privacy whitepaper [2] will save them in courts.
[1] https://ec.europa.eu/info/law/law-topic/data-protection/refo...
[2] https://www.google.com/chrome/privacy/whitepaper.html#variat...
Oh interesting, it must be an extension that is filtering it out for me (Ghostery, DDG Privacy Essentials or Adblock Plus in my case)