Comment by jorvi
14 hours ago
They got cookie pop-ups right, current rules:
- the default choice needs to be "strictly necessary cookies
- with other less prominent buttons for "allow all" and "deny all"
- a site is not allowed to force you to have the press a bunch of buttons or select a bunch of things to deny most/all cookies
The problem lies in enforcement. Unless you are a huge player, there is almost nil chance you're gonna get fined.
I think about the only thing missing is that they should have RFC'd a standard akin to Do Not Track, except this would have communicated to sites if your default is "strictly necessary", "allow all" or"deny all". With it being set to "strictly necessary" by default.
> The problem lies in enforcement. Unless you are a huge player, there is almost nil chance you're gonna get fined.
I am curious: why is that difficult? Define the fine as a percentage of the revenue of the company, have users report links, and pay someone to check the link and send the fine.
Sounds like easy money... I mean it's very profitable to pay people to check parking lots and fine drivers who don't follow the regulations. This should be even more profitable?
If I am business outside Europe, why would I send Europe what my revenue is?
I don't know — why do businesses outside Europe care about GDPR compliance at all? They could just track Europeans all they want to, without any cookie banners.
1 reply →