Google’s FLoC Is a Terrible Idea

[fckthisguy]

Opting out of cookies is often not very easy because of:

- hidden and confusingly worded opt-out dialogues - different cookie banners on ever site - dark patterns such as requiring far more clicks to opt-out than in - opt-out dialogues with lots of technical wording - sites that just don't provide opt-out options - sites that purposely degrade the ux if you opt-out

All these mean that the average "not technical" user (such as my parents) cannot reliability opt-out.

We ought to have opt-in be the default.

[g_p]

Also worth remembering sites that simply dump their third party cookies before the prompt even loads up! Often someone doesn't understand how their cookie prompt script works, or simply doesn't care and assumes if people see the prompt they'll assume it's legal!

Textbook illegal, but major high-street global brand names do this, and there's no easy way to make them stop - regulators just can't move quickly enough or show enough teeth. We would need thousands of convictions per day to even scratch the surface - I'd estimate at least 9 in 10 sites I visit breaks the law in one way or another around their cookies and consent prompt.

Perhaps we need a way to commercialise and earn revenue from identifying the sites breaking the laws as you describe? The law demands "opt in" for Europe, yet everyone tries to skirt this and use dark patterns like forgetting the cookie settings of anyone who dares not accept everything. Many of these dark pattern techniques are actually illegal.

If you could commercialise each of these findings, we would have everyone compliant in a matter of weeks. SEC style whistleblower model (albeit on a smaller scale)?

[contravariant]

Ah I see the confusion.

No I meant it's easy to just not send those cookies back.

At the very least it is not harder than letting the browser profile you and choose what it should and shouldn't share with advertisers.