these banners are the BANE of the internet. Just block cookies yourself if you don't want them used. And if someone wants to track / fingerprint you their are myriad ways to do so. Why people love pushing these absolutely crazy interactions I don't get - it makes you realize how clueless and/or out of touch privacy advocates sometimes are.
My city website has so many popups / popover you have to accept EVERY single time you visit it is not usable on mobile. Accept / decline I don't care on cookies. And many websites just bump you off the website if you don't accept.
I'm serious - when you have ISPs selling your browsing history, addins and trackers and website profile tools live capturing your every mouse movement, are cookies the great evil of the internet that must drive a billion (?) click on "accept" every day?
My own solution - allow for an "I accept cookies" header - you set it ONCE on your browser and people owe you $100 if they show you a cookie popup. Now THAT would be a law I could get behind!
The current implementation is malicious compliance. The intent was to stop so many cookies being put on your computer without realising it or without reason.
I feel it is very dangerous to encourage us to accept clicking on things as the norm. The windows virus era taught us that was a very bad idea and now we have to click on nearly every website and accept things due to GDPR. This part of GDPR was really silly and a step backwards.
You can blame so much of it on the broken GDPR law. If you run a website, you have to put up a cookie banner. It does nothing - practically everyone just clicks accept.
Lawmakers are living in some imaginary universe where consumers read the terms and conditions of every website they visit. Their privacy laws are seriously out of touch. Or maybe they're designed purposefully to be that way.
I seem to recall this actually being a common but incorrect take on the cookie banner, my understanding is that no cookie prompt is necessary for basic site functionality (passing data between pages, user preferences, etc.). And actually a banner is only needed when the cookie use case is user tracking or could be used as such i.e could identify a unique visitor.
So most sites could choose to give up analytics (altough tbh the most important metrics would still be fine like daily page hit count, etc.) but it's easier to add the banner and blame GDPR.
But perhaps, once a company is a certain size their legal department just screams all day about needing a cookie banner? Also very possible.
GDPR has little to do with the cookie pop ups, which predate it. In any case, the cookie law allows essential cookies (Login, shopping cart etc) without consent (and GDPR allows data that is necessary for operation eg collecting your address to ship a product).
No, you don't have to put up a cookie banner if the cookies are essential to your website. For example, to handle logins or purchases.
If you include non-essential cookies (like, for example, tracking cookies set by two or three hundred advertisers), you must ask the user for their consent. The site must have "decline all" as the default option, and should continue to provide basic functionality when the user declines.
All the banners that don't have the opt-out option or making it difficult to opt-out willfully break the law.
You run a free website that survives based on advertising. This is essential for the website to continue to be viable. Are cookies essential then?
You run a shopping cart. As part of your fraud detection you put a fraud cookie beacon on every page. Is the fraud beacon essential?
As part of your product development / ab testing etc you track users on your website. Is this essential?
For affiliate link fraud control third parties want to have a cookie on your site that leads through to their clickthrough link. Essential?
Reality - you need to stick up a cookie banner to operate a website or get into long complicated legal arguments and face big liability. And that's what folks do, including practically every government agency.
My city website has so many popups / popover you have to accept EVERY single time you visit it is not usable on mobile. Accept / decline I don't care on cookies. And many websites just bump you off the website if you don't accept.
I'm serious - when you have ISPs selling your browsing history, addins and trackers and website profile tools live capturing your every mouse movement, are cookies the great evil of the internet that must drive a billion (?) click on "accept" every day?
My own solution - allow for an "I accept cookies" header - you set it ONCE on your browser and people owe you $100 if they show you a cookie popup. Now THAT would be a law I could get behind!