A new standard 'ADPC' is proposed that does not require you to be asked 'Please allow cookies' every time.

People who have experienced 'banners asking for consent to use cookies ' appearing on most of the screen, making websites difficult to read, and being exhausted by clicking repeatedly to prevent the use of cookies. There should be many. In many countries, the law requires websites to 'ask users to consent to the use of cookies,' but this new banner is no longer needed as it reduces the usability of browsing. A standard called ' Advanced Data Protection Control ' has been proposed.

New browser signal could make cookie banners obsolete

A new HTTP spec proposes elimination of obnoxious “cookie banners” | Ars Technica

The enforcement of the EU General Data Protection Regulation (GDPR) requires prior consent for websites to use your cookies. For this reason, many websites display a banner at the bottom of the website to ask the user for their consent.

However, such banners occupy most of the browser screen and deprive them of readability, especially on smartphones with small screens. It is also a problem that the design 'dark pattern' is used with the intention of deceiving the user when consenting.

Against this background, a new proposal is called Advanced Data Protection Control (ADPC). ADPC has a mechanism in which privacy settings are set in the browser in advance, and when a user visits a website, the settings are reflected by communication.

ADPC has been proposed by a non-profit organization called 'My Privacy is None of Your Business ' and a research institute called 'The Sustainable Computing Lab'. There are two. The former sends a list of 'identifiers of consent to the user's cookie' by communicating with the web server and the latter with the website.

Whether via HTTP headers or JavaScript, consent is sent in the form of a JSON file like this:

'consentRequests': {
'cookies': 'Store and / or access cookies on your device.',
'ads_profiling': 'Create a personalized ads profile.'

Also, with the HTTP header method, the web server links directly to the consent file in response to the HTTP GET.

HTTP / 1.1 200 OK
Link: Link: rel = 'consent-requests'

When the web browser detects this link, it responds with the settings previously configured by the user or asks the user for a response via a pop-up dialog. And when the user sets it, the browser will include ADPC in future HTTP GET requests as follows.

GET /page.htm HTTP / 1.1
Host: website.tld
ADPC: withdraw = *, consent = cookies

With the above method, the message asking for your consent to use cookies is not a huge banner at the bottom of the screen, but a pop-up that the app displays when you ask for the use of the camera. Existing banners can be deliberately complicated by dark patterns, but this method is believed to be simple and minimize user 'click fatigue'.

in Posted by logq_fa