Textpattern CMS support forum

You are not logged in. Register | Login | Help

#391 2018-06-09 00:53:48

Destry
Moderator
From: Haut-Rhin
Registered: 2004-08-04
Posts: 4,144
Website

Re: Txp cookies, visitor logging, and GDPR stuff in general

colak wrote #312470:

So, as I understand it gdprhallofshame.com should include their own site in the list?

Depends. Is the site a business or concerned with commerce at all? If not, it doesn’t have to comply.

I don’t understand the weird statement about Raygun in the About info, though. If he’s getting sponsor money through the site, then he might need to comply, yes.

I find the about page a little pretentious, in fact.


The text persuades, the *notes prove。

Offline

#392 2018-06-11 04:54:52

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 7,107
Website

Re: Txp cookies, visitor logging, and GDPR stuff in general

michaelkpate wrote #311894:

This article admits that no one knows anything.

I actually looked into geolocation technology a few weeks ago in order to see if I could come up with a way to block anyone from an EU country as a proof of concept.

I came across this script which might be good if it was developed into a txp plugin so as to load the cookie warnings only in the EU. Something like

<txp:xxx_if_eu>
<txp:oui_cookie name="accept" values="yes" />
<txp:oui_if_cookie name="accept">
track
<txp:else />
warning
</txp:oui_if_cookie>
<txp:else />
track
</txp:xxx_if_eu>

Yiannis
——————————
neme.org | hblack.net | LABS | State Machines | NeMe @ github

Offline

#393 2018-06-11 12:26:38

michaelkpate
Moderator
From: Avon Park, FL
Registered: 2004-02-24
Posts: 1,147
Website

Re: Txp cookies, visitor logging, and GDPR stuff in general

colak wrote #312500:

I came across this script which might be good if it was developed into a txp plugin so as to load the cookie warnings only in the EU.

Unfortunately, that doesn’t actually comply with the law.

And it won’t work (Like any kind of blocking), because GDPR doesn’t affect connections from Europe but connections from users having European citizenship, so even someone living in USA but having EU citizenship will be affected by GDPR. – Twitter

I can’t wait for the EU to fine a company for sending cookies to someone like Peter Bright. Peter is a naturalized US citizen, which required him to renounce his UK citizenship to get, but he mentioned once that it wasn’t actually recognized by the UK so he is still covered by GDPR.


Michael K. Pate | Pate Technologies

Offline

#394 2018-06-12 13:44:29

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 7,107
Website

Re: Txp cookies, visitor logging, and GDPR stuff in general

A very provocative example of how EU laws are made just to create jobs for lawyers. The page of the European Council, one of the main legislating institutions of the EU, serves 20 cookies without the visitors’ consent! Even if we consider GDPR as a new thing, the cookie law, has been around for some time. I guess some animals are more equal than others.


Yiannis
——————————
neme.org | hblack.net | LABS | State Machines | NeMe @ github

Offline

#395 2018-06-12 14:35:46

michaelkpate
Moderator
From: Avon Park, FL
Registered: 2004-02-24
Posts: 1,147
Website

Re: Txp cookies, visitor logging, and GDPR stuff in general

colak wrote #312532:

serves 20 cookies without the visitors’ consent!

I am getting different results in Firefox.

Go to the site. Check: 4 cookies. Decline and get taken to the Cookie page. Still 4.

Reload. Hit Accept. 5 cookies now. Go back to the home page. Reload. Still 5.

I wonder if they do things different depending on whether you are in the EU?


Michael K. Pate | Pate Technologies

Offline

#396 2018-06-12 15:44:46

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 7,107
Website

Re: Txp cookies, visitor logging, and GDPR stuff in general

michaelkpate wrote #312533:

I am getting different results in Firefox.

Go to the site. Check: 4 cookies. Decline and get taken to the Cookie page. Still 4.

Reload. Hit Accept. 5 cookies now. Go back to the home page. Reload. Still 5.

I wonder if they do things different depending on whether you are in the EU?

They might be serving different cookies depending on location. I just checked the page with Opera VPN (Americas) and got served 17 cookies.

  1. cdnjs.cloudflare.com
  2. analytics.council-tvnewsroom.eu
  3. static.council-tvnewsroom.eu
  4. ssl.google-analytics.com
  5. www.google-analytics.com
  6. ajax.googleapis.com
  7. www.googletagmanager.com
  8. 443d27e11a58a8213c23-cce49c1ac3bc3a94bf10f1cd2f71c573.ssl.cf3.rackcdn.com
  9. 9473ad3ea11b29681679-f016b9572ff77a84c11597148be206c7.ssl.cf3.rackcdn.com
  10. c71e283419c99084e2f1-84bb3e6572a8478bcb83f2e5fe3f9c9e.ssl.cf3.rackcdn.com
  11. dadfc20f9dc98898440c-a75424f262e53e74f9539145894f4378.ssl.cf3.rackcdn.com
  12. ssl.siteimprove.com
  13. abs.twimg.com
  14. pbs.twimg.com
  15. cdn.syndication.twimg.com
  16. platform.twitter.com
  17. syndication.twitter.com

Regardless of the number, they should not be serving any without our consent!


Yiannis
——————————
neme.org | hblack.net | LABS | State Machines | NeMe @ github

Offline

#397 2018-06-12 16:51:52

michaelkpate
Moderator
From: Avon Park, FL
Registered: 2004-02-24
Posts: 1,147
Website

Re: Txp cookies, visitor logging, and GDPR stuff in general

In order to not get served cookies, you kind of have to set a cookie (or use localstorage). But only one. This one didn’t appear until after I made a choice.


Name eu.notification.cookie
Value 1
Host www.consilium.europa.eu
Path /
Expires Wed, 12 Jun 2019 14:31:48 GMT
Secure No
HttpOnly No

This is the other one I am getting that you didn’t list. It appeared as soon as I visited the site.


Name nmstat
Value 1528813622054
Host .www.consilium.europa.eu
Path /
Expires Mon, 08 Mar 2021 14:27:00 GMT
Secure No
HttpOnly No

More Research:

This cookie name is associated with the website analytics service provided by SiteImprove. It enables site owners to gather usage statistics about their websites. I went to http://www.belfastcity.gov.uk/ and they do the same thing.

If the governments in the EU can’t get GDPR right, it kind of makes it hard for them to take the moral high ground.

Even More Research:

“You accept the use of cookies by continuing to browse the site or closing this banner.” from https://go.siteimprove.com/website-check-demo-ppc-us

A perfect example of how not to implement GDPR as this is supposed to be a clear violation.


Michael K. Pate | Pate Technologies

Offline

#398 2018-06-13 05:17:35

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 7,107
Website

Re: Txp cookies, visitor logging, and GDPR stuff in general

belfastcity served me 12 cookies

Here are the 20 cookies from EU council on ff visiting from Cyprus

  1. cdnjs.cloudflare.com
  2. analytics.council-tvnewsroom.eu
  3. static.council-tvnewsroom.eu
  4. stats.g.doubleclick.net
  5. ssl.google-analytics.com
  6. www.google-analytics.com
  7. ajax.googleapis.com
  8. fonts.googleapis.com
  9. www.googletagmanager.com
  10. fonts.gstatic.com
  11. 443d27e11a58a8213c23-cce49c1ac3bc3a94bf10f1cd2f71c573.ssl.cf3.rackcdn.com
  12. 9473ad3ea11b29681679-f016b9572ff77a84c11597148be206c7.ssl.cf3.rackcdn.com
  13. c71e283419c99084e2f1-84bb3e6572a8478bcb83f2e5fe3f9c9e.ssl.cf3.rackcdn.com
  14. dadfc20f9dc98898440c-a75424f262e53e74f9539145894f4378.ssl.cf3.rackcdn.com
  15. ssl.siteimprove.com
  16. abs.twimg.com
  17. pbs.twimg.com
  18. cdn.syndication.twimg.com
  19. platform.twitter.com
  20. syndication.twitter.com

Yiannis
——————————
neme.org | hblack.net | LABS | State Machines | NeMe @ github

Offline

#399 2018-06-13 05:19:40

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 7,107
Website

Re: Txp cookies, visitor logging, and GDPR stuff in general

The central governments sites of EU member States and the number of cookies they serve without our consent.

Country URL Cookies Served
Austria https://www.federal-chancellery.gv.at/ 2
Belgium https://www.belgium.be/en 5
Bulgaria http://www.gov.bg/en 1
Croatia https://vlada.gov.hr/en 2
Cyprus http://www.cyprus.gov.cy/ 9
Czech Republic https://www.vlada.cz/en/ 2
Denmark http://denmark.dk/ 11
Estonia https://www.valitsus.ee/en 6
Finland http://valtioneuvosto.fi/ 3
France https://www.gouvernement.fr/ 3
Germany https://www.bundesregierung.de/ 1
Greece https://www.hellenicparliament.gr/ 2
Hungary http://www.kormany.hu/ 11
Ireland http://www.gov.ie/ 3
Italy http://www.governo.it/ 3
Latvia http://www.mk.gov.lv/ 4
Lithuania https://lrv.lt/en 4
Luxembourg https://gouvernement.lu/ 4
Malta https://www.gov.mt/ 4
Netherlands https://www.government.nl/ 3
Poland https://www.senat.gov.pl/ 4
Portugal https://www.portugal.gov.pt/ 6
Romania http://gov.ro/en 7
Slovakia http://www.vlada.gov.sk/ 2
Slovenia http://www.vlada.si/en/ 4
Spain http://www.lamoncloa.gob.es/ 3
Sweden https://www.government.se/ 8
United Kingdom https://www.gov.uk/ 3

Yiannis
——————————
neme.org | hblack.net | LABS | State Machines | NeMe @ github

Offline

#400 2018-06-13 05:42:46

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 7,107
Website

Re: Txp cookies, visitor logging, and GDPR stuff in general

The law on cookies as explained by the EU and an article re privacy shield MEPs call on European Commission to suspend Privacy Shield framework.


Yiannis
——————————
neme.org | hblack.net | LABS | State Machines | NeMe @ github

Offline

Board footer

Powered by FluxBB