Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Expose user's preferences in API? #481

Open
flavi1 opened this issue Sep 27, 2024 · 1 comment
Open

Expose user's preferences in API? #481

flavi1 opened this issue Sep 27, 2024 · 1 comment
Labels
enhancement New feature or request

Comments

@flavi1
Copy link

flavi1 commented Sep 27, 2024

What about allow websites to detect the settings before load the CPM?
Something like this:

Window.consentsSettings[type] true / false

Then if a web developper wants to improve user experience with an unknown CPM, he just have to check this settings and then don't load the CPM if presents. This can be a performance concerns since the CPM does not have to be loaded at all if this settings are detected.

Later, we can write some articles, or post some comments about the existence of this settings and it can become a de-facto standart (see https://stackoverflow.com/questions/73570064/why-is-there-no-cookies-consent-api-in-browsers ).
So other hypothetics webextensions developpers can follow the same namespace for consistancy (Window.consentsSettings[type]).

Another related question : Do you recommand a specific CPM to be used with your extension ? Something open source, fully fully RGPD compliant, respectuous user experience, Accessibility etc. I mean, as a developper web, if I want to choose something good, ideally designed to be Consent-O-Matic compliant, wish one should I choose?
If you know one or more, can you add them in a FAQ or at the footer of your websites?

Best regards.
Thank you so much for this extension
@svnhub svnhub added the enhancement New feature or request label Oct 2, 2024
@MidasN
Copy link

MidasN commented Oct 2, 2024

There have been and currently are some projects working towards standardising these signals, actually. There used to be the W3C P3P standard (https://www.w3.org/P3P/) and there is currently the Advanced Data Protection Control (https://www.dataprotectioncontrol.org/). The issue is not so much that there is no technological solution, but more that many CMPs/websites have no incentive to make the user experience better.
From our side, we're a bit reluctant to expose an API that would make it easy to detect and circumvent Consent-O-Matic.

We also don't currently recommend a specific CMP as being better than others. Most major CMPs all have the option to be configured in both a compliant and non-compliant way, so it would be difficult to say one CMP is always better than another. Depending on the complexity of your website, though, I wouldn't see any reason to not just go for a free and open source solution (e.g., https://tarteaucitron.io/en/).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@flavi1 @MidasN @svnhub