this post was submitted on 25 Sep 2023
75 points (98.7% liked)

Asklemmy

43905 readers
1034 users here now

A loosely moderated place to ask open-ended questions

Search asklemmy 🔍

If your post meets the following criteria, it's welcome here!

  1. Open-ended question
  2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
  3. Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
  4. Not ad nauseam inducing: please make sure it is a question that would be new to most members
  5. An actual topic of discussion

Looking for support?

Looking for a community?

~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~

founded 5 years ago
MODERATORS
 

Many websites have a - huge- part in their cookie wall, called 'legitimate interest'. I never allow them and i wonder; is this just a loophole to be able to force certain cookies on us anyway?

I can't imagine it is harmless, but i never hear anyone discussing these type of cookies.

EDIT: Everyone, thank you so much for taking the effort to answer. These replies were very helpful and often quite detailed. I've read them all and it certainly gives food for thought. I also read that EU page, which is indeed not really clarifying much.

I agree that we need to do as much as possible to block all these invaders of our privacy, though it is ridiculous that we have to make so much effort to protect ourselves. And i know many people around me, who just let it all happen and are sometimes not even aware of such things as trackers. And honestly, they shouldn't have to be aware, it is infuriating that these things are either allowed, or those companies taking the - small - risk to get away with it, because most people won't bother with law suits and what not, certainly not when so many websites have these shady practices...

Again, thank you; i'm glad i asked :-)

you are viewing a single comment's thread
view the rest of the comments
[–] Blake@feddit.uk 3 points 1 year ago (3 children)

No, legitimate interest goes further than functionally required cookies. Legitimate interest can be treated to mean almost anything, because it refers to the “legitimate business interests of the data processor”. If you’re on a news website, it’s their business to show you ads and to get them to click on them. Therefore, it’s their best interests to improve the click-through rate. This can be used to justify tracking cookies as legitimate interest.

Would it survive the test of a day in court? I don’t know, maybe not, but it probably will never go that far, so it basically doesn’t matter anyways.

[–] AlteredStateBlob@kbin.social 2 points 1 year ago

It does already come with some limitations, though they're also a matter of interpretation. For example "legitimate interests" cannot be applied to personal data of special categories and may thus not outweigh the rights and interests of the affected persons. This generally requires an assessment to be performed to ensure that is the case.

It's not a get out of jail free card (despite a lot of companies seemingly thinking it is).

[–] towerful@programming.dev 2 points 1 year ago

I was trying to say that, where an ad company's legitimate interests are likely at odds with a user using another website.

Legitimate interests to do something sensible (like fraud/ddos protection) is easy to justify.
Legitimate interests for ad tracking is a lot harder to justify, so it's easier and less risky to just ask for consent.

But yeh, it doesn't really matter in the grand scheme of things. At the moment, at least.
It's only the big prolific companies that are going to have difficulty. Or if a particularly knowledgeable person (or lawyer) has a bone to pick with a company.

[–] planish@sh.itjust.works 2 points 1 year ago

What's an illegitimate interest?