undefined | Better HN

0 pointsmaster-lincoln2y ago0 comments

Sometimes I think the ad industry made up the misleading term cookie-banner. At least GDPR does not limit the technology used for collecting personal information. You still need to ask for consent if you track users with some other technology. Using cookies does not require consent under GDPR, collecting and sharing PII does though (if not necessary for the service to function)

0 comments

M2Ys4U2y ago

It's the ePrivacy Directive (and not the GDPR) that prohibits storing any data on the user's machines unless they are a) strictly necessary to provide the service, or b) the user consents.

master-lincolnOP2y ago

Thanks for the correction. But the point still stands. This isn't about cookies per se, but about not extracting value from a user beyond what the service needs when users do not consent.

j / k navigate · click thread line to collapse

0 pointsmaster-lincoln2y ago0 comments

0 comments

M2Ys4U2y ago

It's the ePrivacy Directive (and not the GDPR) that prohibits storing any data on the user's machines unless they are a) strictly necessary to provide the service, or b) the user consents.

master-lincolnOP2y ago

Thanks for the correction. But the point still stands. This isn't about cookies per se, but about not extracting value from a user beyond what the service needs when users do not consent.

j / k navigate · click thread line to collapse