1105

submitted 11 months ago* (last edited 11 months ago) by MDFL@programming.dev to c/programmer_humor@programming.dev

171 comments fedilink hide all child comments

EDIT: I didn't realize the anger this would bring out of people. It was supposed to be a funny meme based on recent real-life situations I've encountered, not an attack on the EU.

I appreciate the effort of the EU cookie laws. The practice of them just doesn't live up to the theory of the law. Shady companies are always going to find a way to be shady.

you are viewing a single comment's thread
view the rest of the comments

[-] DeriHunter@lemmy.world 24 points 11 months ago

Serious question: I know that there are tracking cookies and the user should be able to decline those,but most sites have an auth cookie that stores you're credentials. The devs can store it in a different place like local storage but thats really unsecured.what can the devs do in this situation when the user decline all cookies?

[-] GuroGuru@lemmynsfw.com 44 points 11 months ago

The EU is not stupid. They categorized cookies into the necessary ones for site-usage and those that aren't. So developers just categorize their session cookie (rightfully) as necessary and that's it.

[-] fosforus@sopuli.xyz 39 points 11 months ago

Cookies that are crucial for the functioning of the website cannot be disabled by the user.

[-] sip@programming.dev 10 points 11 months ago* (last edited 11 months ago)

well, they can be disabled by the user and the site simply won't work.

[-] shasta@lemm.ee 10 points 11 months ago

He means they are exempt from the EU law that says the use must be presented with the option to disable it

[-] Phen@lemmy.eco.br 34 points 11 months ago

The eu rules are mostly about unnecessary cookies. Most web devs just copied whatever everyone else was doing and now there's this standard of having to accept cookies but the EU doesn't really enforce it like that

[-] dzire187@feddit.de 2 points 11 months ago

it's not up to the EU to enforce it.

[-] heeplr@feddit.de 1 points 11 months ago

not sure why you're downvoted. of course member states enforce it.

[-] KevinNoodle@lemmy.world 11 points 11 months ago

Usually the prompts are specifically for tracking cookies, not essential ones for login. Alternatives without cookies:

URL sessions
Tokens
OAuth/OIDC third party
Local/Session Storage (ditto - mind the risks)

[-] nothacking@discuss.tchncs.de 4 points 11 months ago

The GDPR is not "cookie law", it only prohibits tracking users in a way not essential to the operation of the site using locally stored identifiers (cookies, local storage, indexed DB...)

Storing a cookie to track login sessions, or color scheme preference does not require asking the user or allowing them to decline.

[-] smileyhead@discuss.tchncs.de 1 points 9 months ago

What the dev can do if user decline processing of personal data is not store such personal data in cookies or anywhere.

Or even better, do not track the user so the consent would only be needed in for example registration form.

this post was submitted on 07 Sep 2023

1105 points (91.2% liked)

Programmer Humor

18872 readers

861 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

founded 1 year ago

MODERATORS

Feyter@programming.dev

Vacant@programming.dev

anzo@programming.dev

BurningTurtle@programming.dev