Aral BalkanLook, Jeff Atwood, it is difficult to take you seriously when you write authoritatively on a subject you clearly don’t understand.
GDPR doesn’t mandate cookie notices.
Cookie notices are *malicious compliance* by the surveillance-driven adtech industry.
If you’re not tracking people, you do not need a cookie notice, period.
If you’re only using first-party cookies for functional reasons, you do not need a cookie notice, period.
If you’re using third-party cookies to track people – i.e., if you’re sharing their data with others – then *you must have their consent to do so*. Because, otherwise, you are violating their privacy. Even then, the law doesn’t mandate a cookie notice.
How would you conform to EU law without a cookie notice if your aim wasn’t malicious compliance?
You would not track people by default and you would make it so they have to go your site’s settings to turn on third-party tracking if, for some inexplicable reason, they wanted that “feature”.
Boom!
No cookie notice necessary.
What’s that?
But that would destroy your business because your business is founded on the fundamental mechanic of violating people’s privacy?
Good.
Your business doesn’t deserve to exist.
Because the real bullshit here isn’t EU legislation that protects the human right to privacy, it’s the toxic Silicon Valley/Big Tech business model of farming people for data that violates everyone’s privacy and opens the door to technofascism.
Jeff Atwood (@[email protected])
Look, EU, it is difficult to take you seriously when you forced all this cookie notification bullshit on us. That feature a) should not exist and b) if it did, should be a BROWSER feature not "every website in the entire world now has to bother everyone forever about this stupid thing" https://blog.codinghorror.com/breaking-the-webs-cookie-jar/
Knud Jahnke
Je ne suis pas goth
FreediverX
MidgePhoto