SlideShare ist ein Scribd-Unternehmen logo

Possible cookie substitutions (cookieless tracking) - The Cookie Crumbles

Robert Ressmann
Robert Ressmann

Arms race on OnSite, AdTech and Publisher side. In times of Browser Tracking Prevention, DSGVO & Adblocking the question arises how the online industry can deal with the crumbling cookie or replace it with a substitute... Here are a few possibilities. [cookie substitution, consent, GDPR, adblocking, tag, tracking, targeting, retargeting, fingerprinting, customer journey, dco, attribution, etag, cache, meta data, login alliance, itp, etp, walled garden, adid, werbeid, unifiedid, household graph, cdp, taxonomie, dmp, 1st party, segment, 3rd party, doh, programmatic, havas, havasmedia, ressmann, online media, display, advertising, martech, adtech, data driven, s2s]

Marketing
1 von 9
Downloaden Sie, um offline zu lesen
1Reader-Version THE COOKIE CRUMBLES (extract) Browser Tracking Preventions, GDPR & Adblocking Frankfurt, November 2019
2Reader-Version This license allows third parties to distribute, remix, enhance and build upon the work, even commercially, as long as the author of the original is named and the new works based on his work are published under the same conditions. This license applies only to the content of the presentation. All images and icons are still subject to copyright and the applied license of the respective creator. This is therefore a "hands-on presentation" and the author looks forward to receiving feedback, improvements and suggestions so that it can give impulses to our industry.
3Reader-Version This document constitutes general non-binding information. The contents reflect the opinion of the author at the time of writing. Although the information has been compiled with the greatest possible care, there is no claim to factual correctness, completeness and/or up-to-dateness, in particular this document cannot take into account the special circumstances of the individual case. This document is therefore neither legal advice nor instructions for action! Any use is therefore the responsibility of the recipient and should be explicitly approved by the respective DPO and legal department. Any liability is excluded.
4Reader-Version Source: https://www.docks-ffm.de/media/pressebilder-20180713.zip Possible Cookie Substitutions Arms race on OnSite, AdTech and Publisher side
5Reader-Version On OnSite, AdTech and Publisher Side (in Web) Tracking-Method Pros Cons GDPR & ePR Fingerprinting (computed ID) No domain binding. Fully 'synchable' with the same algorithm. Can only be prevented by deactivating Javascript. Can be configured browser independent. As of Oct 2019, fingerprints will also get through with incognito windows & active blocking! Multiple users could create the same fingerprint, especially on mobile devices. Tor browsers and a few plugins generate random browser values and are not trackable. Requires active Javascript. The more tests are done, the longer the duration of the fingerprinting and the load on the user's hardware. FireFox and Chrome have announced to block fingerprints. Fingerprinting is not mentioned in the GDPR as long as no personal data is used! With the upcoming ePrivacy-Regulation this changes. Fingerprinting is already mentioned in the ePrivacy Directive. The DSK evaluates this already now as Profiling which requires an explicit consent. eTags (transferred ID; could also be a Fingerprint, UnifiedID, LoginID,…) Uniqueness of a browser is very high. Also works without JavaScript. High compatibility, difficult to decloak. For a simple referer tracking and attribution no database and no large server reconfiguration are necessary. The RAW logfiles provide everything you need. Not yet strong in blocking scope. Can be cleared by emptying or deactivating the cache. Origin binding such as cookies, browsers & plugins could block domains. Unique assigned ID will be considered as pseudonym. Under circumstances Art6.1.f - TMG §15. Since 30.09.19 (ECJ judgement) rather only with consent. With ePR, consent is required. Authentication Cache (ID; ; could also be aUnifiedID, LoginID,…) The uniqueness of a browser is very high. Can only be cleared by emptying the password cache or exiting the browser session. The session can be restored with tricks. Are created with JavaScript and are therefore easy to bypass. Possible warning message from the browser.origin binding such as cookies. Browser & plugins could block domains. Unique assigned ID will be considered as pseudonym. Under circumstances Art6.1.f - TMG §15. Since 30.09.19 (ECJ judgement) rather only with consent. With ePR, consent is required. Login-Alliances / Walled-Gardens / Social-Logins / Consent-Frameworks (LoginID could also be a UnifiedID) Uniquely assigned LoginID which is shared in the network, can be done with a central server or S2S; if necessary also via blockchain account, browser plug-ins or even VPN and DoH (DNS) bound. Easy cross-device tracking. User adaptation is achieved through incentives (Free Content / get payed for Data). Login trade-off because 3rd Party Cookie blocked and Local-Storage needs a Consent. Interminable, high implementation and adaptation effort. Limited to alliance members or WalledGarden. IAB-TCF would have to be linked to a UnifiedID and rebuilt as a kind of login alliance or a unifiedID would have to be found with NetID Foundation, Verimi, Mobile Connect, Advertising ID Consortium, DigiTrustID, OpenAdID, ID5, etc. FireFox is going to block UnifiedID requests! Clear contractual situation at the request of the party concerned. Explicit login to each session if necessary. It may be based on Art. 6.1.b GDPR. Tracking-Wall (proactive tracking approval) Trackings can be fired again in the browser after white listing or proactive lowering of security settings by the user. Will only be accepted for 1st party cookies, mainstream users will be more likely to leave the site than change the default browser settings. Unique assigned ID will be considered as pseudonym. Under circumstances Art6.1.f - TMG §15. Since 30.09.19 (ECJ judgement) rather only with consent. With ePR, consent is required. Household-Graph / Meta-Segment-ID (Meta-Data) like eg. Havas- Converge Data (also CRM) and trackings collected with Consent result in an anonymous SegmentID in which a large number of users are combined. Segment matching can be done via S2S. Too rigid segmentation; user either has multiple segment IDs or moves from one segment to another by adding signals. If the segments are too granular, these IDs can be regarded as personal data again. WalledGarden or Fullstack stand-alone solution. Id-synch and Fullstack servers can easily be blocked by browsers. If the raised taxonomies cannot be aggregated narrowly on an individual person or the segment size is high enough, no PII are present and the GDPR does not come to application. As long if the consent has been obtained and the rights of the affected persons are protected by the data harvester. Standardized Consumer Taxonomy (Meta-Data) et al. acc. to Google Proposal Aug. ´19 Through a standardized procedure, only taxonomies, such as interests, are assigned to the user as meta data or IDs. An individual user ID is not created. Target group targeting and DCO would thus be possible without personal data, not only on contextual placements. All data are in the hands of the user, he has full transparency, choice and control over his data and thus GDPR Art. 12 - 23! 3rd Party Cookie is blocked and Local-Storage needs a Consent. Alternatively, a profile would have to be provided by the browser manufacturers to store the taxonomies / meta data, but this is currently not provided in any browser. If the collected taxonomies cannot be aggregated to a single person or if the segment size is high enough, there is no PII and the GDPR is not applicable! [Icons are from FlatIcon.com] POSSIBLE COOKIE SUBSTITUTIONS
6Reader-Version Not quite. There is still the GDPR! As shown in the table, a simple "move the data" or "move an identifier to another location" is not enough. Unfortunately, the biggest misconception is that the topic only revolves around the cookie. It is actually about personal data as well as transparency, selection and control of recipients and content by the user. I.e. with an "alternative storage space" one does not deal, on the one hand, with the consent according to art. 6.1.a GDPR nor can browsers or AdBlockers be cheated for a long time (Browser War 3.0). But this also means that online advertising, programmatic planning and purchasing, targeting, attribution, etc. are not dead - it is not as easy as with the antiquated cookie. COOKIE SUBSTITUTION & ALL IS FINE?
7Reader-Version To compensate the lost signals  Non-Blocked Cookie Substitutions with Consent  Aggregation & anonymization of (1st party, not only online,) PII with Consent to household graphs or meta-segments  "Reanimate" classic contextual, editorial environment planning  Use semantic-NLP, brand save, in programmatic  Filling the gaps in the journey by advanced statistical methods and machine learning (AI) SHORT TERM
8Reader-Version Transparent targeting in the hands of the user In addition to the Short Terms:  Standardized Consumer Taxonomy via Browser (MetaData)  Pay-with-Data / Login Alliance Models LONG TERM (IN A PERFECT WORLD)
9Reader-Version Robert Reßmann Director Scaling Strategies, Product Development, MarTech; Data Protection Consultant Email Robert.Ressmann@havasmedia.com

Empfohlen

2010 za con_ivan_burke
2010 za con_ivan_burke2010 za con_ivan_burke
2010 za con_ivan_burke
Johan Klerk
 
Media Kitchen - The Cookieless Future
Media Kitchen - The Cookieless FutureMedia Kitchen - The Cookieless Future
Media Kitchen - The Cookieless Future
The Media Kitchen
 
Web analytics & Online privacy
Web analytics & Online privacyWeb analytics & Online privacy
Web analytics & Online privacy
Panagiotis Tzamtzis
 
The Identity of Things: Privacy & Security Concerns
The Identity of Things: Privacy & Security ConcernsThe Identity of Things: Privacy & Security Concerns
The Identity of Things: Privacy & Security Concerns
Simon Moffatt
 
UXPSystems_whitepaper_Privacy_Nov182016
UXPSystems_whitepaper_Privacy_Nov182016UXPSystems_whitepaper_Privacy_Nov182016
UXPSystems_whitepaper_Privacy_Nov182016
Andrey Plotnikov
 
General Data Protection Regulation & Customer IAM
General Data Protection Regulation & Customer IAMGeneral Data Protection Regulation & Customer IAM
General Data Protection Regulation & Customer IAM
Ubisecure
 
INFOMAGAZINE 8 by REAL security
INFOMAGAZINE 8 by REAL securityINFOMAGAZINE 8 by REAL security
INFOMAGAZINE 8 by REAL security
Samo Zavašnik
 
Impact of GDPR on the pre dominant business model for digital economies
Impact of GDPR on the pre dominant business model for digital economiesImpact of GDPR on the pre dominant business model for digital economies
Impact of GDPR on the pre dominant business model for digital economies
EquiGov Institute
 

Empfohlen

2010 za con_ivan_burke
2010 za con_ivan_burke2010 za con_ivan_burke
2010 za con_ivan_burke
Johan Klerk
 
Media Kitchen - The Cookieless Future
Media Kitchen - The Cookieless FutureMedia Kitchen - The Cookieless Future
Media Kitchen - The Cookieless Future
The Media Kitchen
 
Web analytics & Online privacy
Web analytics & Online privacyWeb analytics & Online privacy
Web analytics & Online privacy
Panagiotis Tzamtzis
 
The Identity of Things: Privacy & Security Concerns
The Identity of Things: Privacy & Security ConcernsThe Identity of Things: Privacy & Security Concerns
The Identity of Things: Privacy & Security Concerns
Simon Moffatt
 
UXPSystems_whitepaper_Privacy_Nov182016
UXPSystems_whitepaper_Privacy_Nov182016UXPSystems_whitepaper_Privacy_Nov182016
UXPSystems_whitepaper_Privacy_Nov182016
Andrey Plotnikov
 
General Data Protection Regulation & Customer IAM
General Data Protection Regulation & Customer IAMGeneral Data Protection Regulation & Customer IAM
General Data Protection Regulation & Customer IAM
Ubisecure
 
INFOMAGAZINE 8 by REAL security
INFOMAGAZINE 8 by REAL securityINFOMAGAZINE 8 by REAL security
INFOMAGAZINE 8 by REAL security
Samo Zavašnik
 
Impact of GDPR on the pre dominant business model for digital economies
Impact of GDPR on the pre dominant business model for digital economiesImpact of GDPR on the pre dominant business model for digital economies
Impact of GDPR on the pre dominant business model for digital economies
EquiGov Institute
 
GDPR considerations for blockchain solution architects.
GDPR considerations for blockchain solution architects.GDPR considerations for blockchain solution architects.
GDPR considerations for blockchain solution architects.
Salman Baset
 
Re-using existing PKIs for online Identity Management
Re-using existing PKIs for online Identity ManagementRe-using existing PKIs for online Identity Management
Re-using existing PKIs for online Identity Management
Martijn Oostdijk
 
Deck for Chardan conference call on ePrivacy and GDPR
Deck for Chardan conference call on ePrivacy and GDPR Deck for Chardan conference call on ePrivacy and GDPR
Deck for Chardan conference call on ePrivacy and GDPR
Johnny Ryan
 
Cookies, FLoC & GDPR: Marketing Impact
Cookies, FLoC & GDPR: Marketing ImpactCookies, FLoC & GDPR: Marketing Impact
Cookies, FLoC & GDPR: Marketing Impact
CMassociates
 
The Weakest Point of Security in IoT
The Weakest Point of Security in IoTThe Weakest Point of Security in IoT
The Weakest Point of Security in IoT
nsangary
 
Clouds and Chains
Clouds and ChainsClouds and Chains
Clouds and Chains
Tim Swanson
 
2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c
2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c
2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c
Raj Goel
 
Designing for Privacy
Designing for PrivacyDesigning for Privacy
Designing for Privacy
wrathfulplaza6959
 
Designing for Privacy
Designing for PrivacyDesigning for Privacy
Designing for Privacy
exultantwarning51
 
GDPR - Australian perspective - the challenge, the opportunity and your duty
GDPR - Australian perspective - the challenge, the opportunity and your duty GDPR - Australian perspective - the challenge, the opportunity and your duty
GDPR - Australian perspective - the challenge, the opportunity and your duty
Jakub Otrząsek
 
Top gdpr assessment tools
Top gdpr assessment toolsTop gdpr assessment tools
Top gdpr assessment tools
Rajivarnan R
 
Machine learning presentation in using pyhton
Machine learning presentation in using pyhtonMachine learning presentation in using pyhton
Machine learning presentation in using pyhton
masukmia.com
 
7.5 steps to overlaying BYoD & IoT on Existing Investments
7.5 steps to overlaying BYoD & IoT on Existing Investments7.5 steps to overlaying BYoD & IoT on Existing Investments
7.5 steps to overlaying BYoD & IoT on Existing Investments
Caston Thomas
 
Personal Object Technology
Personal Object TechnologyPersonal Object Technology
Personal Object Technology
Robert Berger
 
Claims based identity for windows
Claims based identity for windowsClaims based identity for windows
Claims based identity for windows
Pradeep Krishnamurthy
 
DevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay AgileDevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay Agile
Ben Saunders
 
IDC on 10 myths regarding GDPR
IDC on 10 myths regarding GDPRIDC on 10 myths regarding GDPR
IDC on 10 myths regarding GDPR
Veritas Technologies LLC
 
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
rahulmonikasharma
 
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
rahulmonikasharma
 
Cookie Law (Dwf 190511)
Cookie Law (Dwf 190511)Cookie Law (Dwf 190511)
Cookie Law (Dwf 190511)
RobertMachin
 
Mögliche Cookie-Substitutionen (cookieless tracking) - The Cookie Crumbles
Mögliche Cookie-Substitutionen (cookieless tracking) - The Cookie CrumblesMögliche Cookie-Substitutionen (cookieless tracking) - The Cookie Crumbles
Mögliche Cookie-Substitutionen (cookieless tracking) - The Cookie Crumbles
Robert Ressmann
 
Studie social media_governance_2010_-_studienergebnisse
Studie social media_governance_2010_-_studienergebnisseStudie social media_governance_2010_-_studienergebnisse
Studie social media_governance_2010_-_studienergebnisse
Robert Ressmann
 

Weitere ähnliche Inhalte

Ähnlich wie Possible cookie substitutions (cookieless tracking) - The Cookie Crumbles

The Weakest Point of Security in IoT
The Weakest Point of Security in IoTThe Weakest Point of Security in IoT
The Weakest Point of Security in IoT
nsangary
 
2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c
2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c
2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c
Raj Goel
 
7.5 steps to overlaying BYoD & IoT on Existing Investments
7.5 steps to overlaying BYoD & IoT on Existing Investments7.5 steps to overlaying BYoD & IoT on Existing Investments
7.5 steps to overlaying BYoD & IoT on Existing Investments
Caston Thomas
 
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
rahulmonikasharma
 
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
rahulmonikasharma
 
Cookie Law (Dwf 190511)
Cookie Law (Dwf 190511)Cookie Law (Dwf 190511)
Cookie Law (Dwf 190511)
RobertMachin
 

Ähnlich wie Possible cookie substitutions (cookieless tracking) - The Cookie Crumbles (20)

GDPR considerations for blockchain solution architects.
GDPR considerations for blockchain solution architects.GDPR considerations for blockchain solution architects.
GDPR considerations for blockchain solution architects.
 
Re-using existing PKIs for online Identity Management
Re-using existing PKIs for online Identity ManagementRe-using existing PKIs for online Identity Management
Re-using existing PKIs for online Identity Management
 
Deck for Chardan conference call on ePrivacy and GDPR
Deck for Chardan conference call on ePrivacy and GDPR Deck for Chardan conference call on ePrivacy and GDPR
Deck for Chardan conference call on ePrivacy and GDPR
 
Cookies, FLoC & GDPR: Marketing Impact
Cookies, FLoC & GDPR: Marketing ImpactCookies, FLoC & GDPR: Marketing Impact
Cookies, FLoC & GDPR: Marketing Impact
 
The Weakest Point of Security in IoT
The Weakest Point of Security in IoTThe Weakest Point of Security in IoT
The Weakest Point of Security in IoT
 
Clouds and Chains
Clouds and ChainsClouds and Chains
Clouds and Chains
 
2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c
2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c
2013-06-26-Is_your_company_Googling_its_privacy_away_brightalk_format_1c
 
Designing for Privacy
Designing for PrivacyDesigning for Privacy
Designing for Privacy
 
Designing for Privacy
Designing for PrivacyDesigning for Privacy
Designing for Privacy
 
GDPR - Australian perspective - the challenge, the opportunity and your duty
GDPR - Australian perspective - the challenge, the opportunity and your duty GDPR - Australian perspective - the challenge, the opportunity and your duty
GDPR - Australian perspective - the challenge, the opportunity and your duty
 
Top gdpr assessment tools
Top gdpr assessment toolsTop gdpr assessment tools
Top gdpr assessment tools
 
Machine learning presentation in using pyhton
Machine learning presentation in using pyhtonMachine learning presentation in using pyhton
Machine learning presentation in using pyhton
 
7.5 steps to overlaying BYoD & IoT on Existing Investments
7.5 steps to overlaying BYoD & IoT on Existing Investments7.5 steps to overlaying BYoD & IoT on Existing Investments
7.5 steps to overlaying BYoD & IoT on Existing Investments
 
Personal Object Technology
Personal Object TechnologyPersonal Object Technology
Personal Object Technology
 
Claims based identity for windows
Claims based identity for windowsClaims based identity for windows
Claims based identity for windows
 
DevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay AgileDevOps vs GDPR: How to Comply and Stay Agile
DevOps vs GDPR: How to Comply and Stay Agile
 
IDC on 10 myths regarding GDPR
IDC on 10 myths regarding GDPRIDC on 10 myths regarding GDPR
IDC on 10 myths regarding GDPR
 
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
 
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
Identity-Based Proxy-Oriented Data Uploading and Remote Data Integrity Checki...
 
Cookie Law (Dwf 190511)
Cookie Law (Dwf 190511)Cookie Law (Dwf 190511)
Cookie Law (Dwf 190511)
 

Mehr von Robert Ressmann

Mögliche Cookie-Substitutionen (cookieless tracking) - The Cookie Crumbles
Mögliche Cookie-Substitutionen (cookieless tracking) - The Cookie CrumblesMögliche Cookie-Substitutionen (cookieless tracking) - The Cookie Crumbles
Mögliche Cookie-Substitutionen (cookieless tracking) - The Cookie Crumbles
Robert Ressmann
 
Studie social media_governance_2010_-_studienergebnisse
Studie social media_governance_2010_-_studienergebnisseStudie social media_governance_2010_-_studienergebnisse
Studie social media_governance_2010_-_studienergebnisse
Robert Ressmann
 
Predicting the Present with Google Trends
Predicting the Present with Google TrendsPredicting the Present with Google Trends
Predicting the Present with Google Trends
Robert Ressmann
 

Mehr von Robert Ressmann (6)

Mögliche Cookie-Substitutionen (cookieless tracking) - The Cookie Crumbles
Mögliche Cookie-Substitutionen (cookieless tracking) - The Cookie CrumblesMögliche Cookie-Substitutionen (cookieless tracking) - The Cookie Crumbles
Mögliche Cookie-Substitutionen (cookieless tracking) - The Cookie Crumbles
 
Studie social media_governance_2010_-_studienergebnisse
Studie social media_governance_2010_-_studienergebnisseStudie social media_governance_2010_-_studienergebnisse
Studie social media_governance_2010_-_studienergebnisse
 
Theplannersurvey2010
Theplannersurvey2010Theplannersurvey2010
Theplannersurvey2010
 
Harris09presentationfinal
Harris09presentationfinalHarris09presentationfinal
Harris09presentationfinal
 
Pm Langzeitstudie 3 Quartal 09
Pm Langzeitstudie 3 Quartal 09Pm Langzeitstudie 3 Quartal 09
Pm Langzeitstudie 3 Quartal 09
 
Predicting the Present with Google Trends
Predicting the Present with Google TrendsPredicting the Present with Google Trends
Predicting the Present with Google Trends
 

Kürzlich hochgeladen

Brand experience Dream Center Peoria Presentation.pdf
Brand experience Dream Center Peoria Presentation.pdfBrand experience Dream Center Peoria Presentation.pdf
Brand experience Dream Center Peoria Presentation.pdf
tbatkhuu1
 
Google 3rd-Party Cookie Deprecation [Update] + 5 Best Strategies
Google 3rd-Party Cookie Deprecation [Update] + 5 Best StrategiesGoogle 3rd-Party Cookie Deprecation [Update] + 5 Best Strategies
Google 3rd-Party Cookie Deprecation [Update] + 5 Best Strategies
Search Engine Journal
 
Brand experience Peoria City Soccer Presentation.pdf
Brand experience Peoria City Soccer Presentation.pdfBrand experience Peoria City Soccer Presentation.pdf
Brand experience Peoria City Soccer Presentation.pdf
tbatkhuu1
 
BDSM⚡Call Girls in Sector 144 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 144 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 144 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 144 Noida Escorts >༒8448380779 Escort Service
Delhi Call girls
 
Busty Desi⚡Call Girls in Sector 135 Noida Escorts >༒8448380779 Escort Service
Busty Desi⚡Call Girls in Sector 135 Noida Escorts >༒8448380779 Escort ServiceBusty Desi⚡Call Girls in Sector 135 Noida Escorts >༒8448380779 Escort Service
Busty Desi⚡Call Girls in Sector 135 Noida Escorts >༒8448380779 Escort Service
Delhi Call girls
 
[Expert Panel] New Google Shopping Ads Strategies Uncovered
[Expert Panel] New Google Shopping Ads Strategies Uncovered[Expert Panel] New Google Shopping Ads Strategies Uncovered
[Expert Panel] New Google Shopping Ads Strategies Uncovered
Search Engine Journal
 
BDSM⚡Call Girls in Sector 150 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 150 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 150 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 150 Noida Escorts >༒8448380779 Escort Service
Delhi Call girls
 
BDSM⚡Call Girls in Sector 39 Noida Escorts Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 39 Noida Escorts Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 39 Noida Escorts Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 39 Noida Escorts Escorts >༒8448380779 Escort Service
Delhi Call girls
 

Kürzlich hochgeladen (20)

Brand experience Dream Center Peoria Presentation.pdf
Brand experience Dream Center Peoria Presentation.pdfBrand experience Dream Center Peoria Presentation.pdf
Brand experience Dream Center Peoria Presentation.pdf
 
Choosing the Right White Label SEO Services to Boost Your Agency's Growth.pdf
Choosing the Right White Label SEO Services to Boost Your Agency's Growth.pdfChoosing the Right White Label SEO Services to Boost Your Agency's Growth.pdf
Choosing the Right White Label SEO Services to Boost Your Agency's Growth.pdf
 
Google 3rd-Party Cookie Deprecation [Update] + 5 Best Strategies
Google 3rd-Party Cookie Deprecation [Update] + 5 Best StrategiesGoogle 3rd-Party Cookie Deprecation [Update] + 5 Best Strategies
Google 3rd-Party Cookie Deprecation [Update] + 5 Best Strategies
 
Major SEO Trends in 2024 - Banyanbrain Digital
Major SEO Trends in 2024 - Banyanbrain DigitalMajor SEO Trends in 2024 - Banyanbrain Digital
Major SEO Trends in 2024 - Banyanbrain Digital
 
VIP Call Girls Dongri WhatsApp +91-9833363713, Full Night Service
VIP Call Girls Dongri WhatsApp +91-9833363713, Full Night ServiceVIP Call Girls Dongri WhatsApp +91-9833363713, Full Night Service
VIP Call Girls Dongri WhatsApp +91-9833363713, Full Night Service
 
Cash payment girl 9257726604 Hand ✋ to Hand over girl
Cash payment girl 9257726604 Hand ✋ to Hand over girlCash payment girl 9257726604 Hand ✋ to Hand over girl
Cash payment girl 9257726604 Hand ✋ to Hand over girl
 
25+ years’ experience (310) 882-6330 Love Spells in Wilmington, DE | black ma...
25+ years’ experience (310) 882-6330 Love Spells in Wilmington, DE | black ma...25+ years’ experience (310) 882-6330 Love Spells in Wilmington, DE | black ma...
25+ years’ experience (310) 882-6330 Love Spells in Wilmington, DE | black ma...
 
Brand experience Peoria City Soccer Presentation.pdf
Brand experience Peoria City Soccer Presentation.pdfBrand experience Peoria City Soccer Presentation.pdf
Brand experience Peoria City Soccer Presentation.pdf
 
Unraveling the Mystery of The Circleville Letters.pptx
Unraveling the Mystery of The Circleville Letters.pptxUnraveling the Mystery of The Circleville Letters.pptx
Unraveling the Mystery of The Circleville Letters.pptx
 
BDSM⚡Call Girls in Sector 144 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 144 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 144 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 144 Noida Escorts >༒8448380779 Escort Service
 
Rise and fall of Kulula.com, an airline won consumers by different marketing ...
Rise and fall of Kulula.com, an airline won consumers by different marketing ...Rise and fall of Kulula.com, an airline won consumers by different marketing ...
Rise and fall of Kulula.com, an airline won consumers by different marketing ...
 
Unlocking the Mystery of the Voynich Manuscript
Unlocking the Mystery of the Voynich ManuscriptUnlocking the Mystery of the Voynich Manuscript
Unlocking the Mystery of the Voynich Manuscript
 
Elevating Your Digital Presence by Evitha.pdf
Elevating Your Digital Presence by Evitha.pdfElevating Your Digital Presence by Evitha.pdf
Elevating Your Digital Presence by Evitha.pdf
 
Busty Desi⚡Call Girls in Sector 135 Noida Escorts >༒8448380779 Escort Service
Busty Desi⚡Call Girls in Sector 135 Noida Escorts >༒8448380779 Escort ServiceBusty Desi⚡Call Girls in Sector 135 Noida Escorts >༒8448380779 Escort Service
Busty Desi⚡Call Girls in Sector 135 Noida Escorts >༒8448380779 Escort Service
 
Best 5 Graphics Designing Course In Chandigarh
Best 5 Graphics Designing Course In ChandigarhBest 5 Graphics Designing Course In Chandigarh
Best 5 Graphics Designing Course In Chandigarh
 
[Expert Panel] New Google Shopping Ads Strategies Uncovered
[Expert Panel] New Google Shopping Ads Strategies Uncovered[Expert Panel] New Google Shopping Ads Strategies Uncovered
[Expert Panel] New Google Shopping Ads Strategies Uncovered
 
Enhancing Business Visibility PR Firms in San Francisco
Enhancing Business Visibility PR Firms in San FranciscoEnhancing Business Visibility PR Firms in San Francisco
Enhancing Business Visibility PR Firms in San Francisco
 
Discover Ardency Elite: Elevate Your Lifestyle
Discover Ardency Elite: Elevate Your LifestyleDiscover Ardency Elite: Elevate Your Lifestyle
Discover Ardency Elite: Elevate Your Lifestyle
 
BDSM⚡Call Girls in Sector 150 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 150 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 150 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 150 Noida Escorts >༒8448380779 Escort Service
 
BDSM⚡Call Girls in Sector 39 Noida Escorts Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 39 Noida Escorts Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 39 Noida Escorts Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 39 Noida Escorts Escorts >༒8448380779 Escort Service
 

Possible cookie substitutions (cookieless tracking) - The Cookie Crumbles

  • 1. 1Reader-Version THE COOKIE CRUMBLES (extract) Browser Tracking Preventions, GDPR & Adblocking Frankfurt, November 2019
  • 2. 2Reader-Version This license allows third parties to distribute, remix, enhance and build upon the work, even commercially, as long as the author of the original is named and the new works based on his work are published under the same conditions. This license applies only to the content of the presentation. All images and icons are still subject to copyright and the applied license of the respective creator. This is therefore a "hands-on presentation" and the author looks forward to receiving feedback, improvements and suggestions so that it can give impulses to our industry.
  • 3. 3Reader-Version This document constitutes general non-binding information. The contents reflect the opinion of the author at the time of writing. Although the information has been compiled with the greatest possible care, there is no claim to factual correctness, completeness and/or up-to-dateness, in particular this document cannot take into account the special circumstances of the individual case. This document is therefore neither legal advice nor instructions for action! Any use is therefore the responsibility of the recipient and should be explicitly approved by the respective DPO and legal department. Any liability is excluded.
  • 5. 5Reader-Version On OnSite, AdTech and Publisher Side (in Web) Tracking-Method Pros Cons GDPR & ePR Fingerprinting (computed ID) No domain binding. Fully 'synchable' with the same algorithm. Can only be prevented by deactivating Javascript. Can be configured browser independent. As of Oct 2019, fingerprints will also get through with incognito windows & active blocking! Multiple users could create the same fingerprint, especially on mobile devices. Tor browsers and a few plugins generate random browser values and are not trackable. Requires active Javascript. The more tests are done, the longer the duration of the fingerprinting and the load on the user's hardware. FireFox and Chrome have announced to block fingerprints. Fingerprinting is not mentioned in the GDPR as long as no personal data is used! With the upcoming ePrivacy-Regulation this changes. Fingerprinting is already mentioned in the ePrivacy Directive. The DSK evaluates this already now as Profiling which requires an explicit consent. eTags (transferred ID; could also be a Fingerprint, UnifiedID, LoginID,…) Uniqueness of a browser is very high. Also works without JavaScript. High compatibility, difficult to decloak. For a simple referer tracking and attribution no database and no large server reconfiguration are necessary. The RAW logfiles provide everything you need. Not yet strong in blocking scope. Can be cleared by emptying or deactivating the cache. Origin binding such as cookies, browsers & plugins could block domains. Unique assigned ID will be considered as pseudonym. Under circumstances Art6.1.f - TMG §15. Since 30.09.19 (ECJ judgement) rather only with consent. With ePR, consent is required. Authentication Cache (ID; ; could also be aUnifiedID, LoginID,…) The uniqueness of a browser is very high. Can only be cleared by emptying the password cache or exiting the browser session. The session can be restored with tricks. Are created with JavaScript and are therefore easy to bypass. Possible warning message from the browser.origin binding such as cookies. Browser & plugins could block domains. Unique assigned ID will be considered as pseudonym. Under circumstances Art6.1.f - TMG §15. Since 30.09.19 (ECJ judgement) rather only with consent. With ePR, consent is required. Login-Alliances / Walled-Gardens / Social-Logins / Consent-Frameworks (LoginID could also be a UnifiedID) Uniquely assigned LoginID which is shared in the network, can be done with a central server or S2S; if necessary also via blockchain account, browser plug-ins or even VPN and DoH (DNS) bound. Easy cross-device tracking. User adaptation is achieved through incentives (Free Content / get payed for Data). Login trade-off because 3rd Party Cookie blocked and Local-Storage needs a Consent. Interminable, high implementation and adaptation effort. Limited to alliance members or WalledGarden. IAB-TCF would have to be linked to a UnifiedID and rebuilt as a kind of login alliance or a unifiedID would have to be found with NetID Foundation, Verimi, Mobile Connect, Advertising ID Consortium, DigiTrustID, OpenAdID, ID5, etc. FireFox is going to block UnifiedID requests! Clear contractual situation at the request of the party concerned. Explicit login to each session if necessary. It may be based on Art. 6.1.b GDPR. Tracking-Wall (proactive tracking approval) Trackings can be fired again in the browser after white listing or proactive lowering of security settings by the user. Will only be accepted for 1st party cookies, mainstream users will be more likely to leave the site than change the default browser settings. Unique assigned ID will be considered as pseudonym. Under circumstances Art6.1.f - TMG §15. Since 30.09.19 (ECJ judgement) rather only with consent. With ePR, consent is required. Household-Graph / Meta-Segment-ID (Meta-Data) like eg. Havas- Converge Data (also CRM) and trackings collected with Consent result in an anonymous SegmentID in which a large number of users are combined. Segment matching can be done via S2S. Too rigid segmentation; user either has multiple segment IDs or moves from one segment to another by adding signals. If the segments are too granular, these IDs can be regarded as personal data again. WalledGarden or Fullstack stand-alone solution. Id-synch and Fullstack servers can easily be blocked by browsers. If the raised taxonomies cannot be aggregated narrowly on an individual person or the segment size is high enough, no PII are present and the GDPR does not come to application. As long if the consent has been obtained and the rights of the affected persons are protected by the data harvester. Standardized Consumer Taxonomy (Meta-Data) et al. acc. to Google Proposal Aug. ´19 Through a standardized procedure, only taxonomies, such as interests, are assigned to the user as meta data or IDs. An individual user ID is not created. Target group targeting and DCO would thus be possible without personal data, not only on contextual placements. All data are in the hands of the user, he has full transparency, choice and control over his data and thus GDPR Art. 12 - 23! 3rd Party Cookie is blocked and Local-Storage needs a Consent. Alternatively, a profile would have to be provided by the browser manufacturers to store the taxonomies / meta data, but this is currently not provided in any browser. If the collected taxonomies cannot be aggregated to a single person or if the segment size is high enough, there is no PII and the GDPR is not applicable! [Icons are from FlatIcon.com] POSSIBLE COOKIE SUBSTITUTIONS
  • 6. 6Reader-Version Not quite. There is still the GDPR! As shown in the table, a simple "move the data" or "move an identifier to another location" is not enough. Unfortunately, the biggest misconception is that the topic only revolves around the cookie. It is actually about personal data as well as transparency, selection and control of recipients and content by the user. I.e. with an "alternative storage space" one does not deal, on the one hand, with the consent according to art. 6.1.a GDPR nor can browsers or AdBlockers be cheated for a long time (Browser War 3.0). But this also means that online advertising, programmatic planning and purchasing, targeting, attribution, etc. are not dead - it is not as easy as with the antiquated cookie. COOKIE SUBSTITUTION & ALL IS FINE?
  • 7. 7Reader-Version To compensate the lost signals  Non-Blocked Cookie Substitutions with Consent  Aggregation & anonymization of (1st party, not only online,) PII with Consent to household graphs or meta-segments  "Reanimate" classic contextual, editorial environment planning  Use semantic-NLP, brand save, in programmatic  Filling the gaps in the journey by advanced statistical methods and machine learning (AI) SHORT TERM
  • 8. 8Reader-Version Transparent targeting in the hands of the user In addition to the Short Terms:  Standardized Consumer Taxonomy via Browser (MetaData)  Pay-with-Data / Login Alliance Models LONG TERM (IN A PERFECT WORLD)
  • 9. 9Reader-Version Robert Reßmann Director Scaling Strategies, Product Development, MarTech; Data Protection Consultant Email Robert.Ressmann@havasmedia.com