Why don’t web browsers answer cookie questions?

As others have said, it's not because of a technical reason but instead because companies don't really want to comply with privacy laws. We already have tried this twice: P3P (https://en.wikipedia.org/wiki/P3P) and DNT (https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/DN...), and it seems they are trying again with GPC (https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Se...). The important point is that this assumes that websites will cooperate, but knowing that advertising companies are actively clogging up EU countries with long-stretching lawsuits just so that they can stretch their time I foresee that GPC will be a failure (like DNT and P3P).

Most browsers can do this[1] (it is called "Do Not Track), but many websites will not use this information, because they want you to consent to them tracking you so they will just ask you in a pop up (Cookie Banner). While on the one hand this seems like companies trying to extract the most amount of money out of your website visit on the other hand this setting isn't on a website basis and you might want one website to track what you do while you don't want another to do so, which isn't possible with this setting so far. Furthermore a website might want to give you the option to choose between only necessary cookies, cookies that improve your user experience and tracking cookies arguing that the do not track request doesn't make it clear weather you only want the necessary cookies or also cookies improving your user experience that aren't strictly necessary but don't track you.

[1] how to enable this feature in chrome: https://support.google.com/chrome/answer/2790761?hl=en&co=GE...

See https://en.wikipedia.org/wiki/Do_Not_Track

I can say that I disable all the cookies that I can disable not because I care about privacy but because as somebody neurodivergent, modal dialogs cause me a lot of distress and I want to punish web sites for distracting me.

Unfortunately, when someone thought cookies problematic, instead of a pragmatic solution (such as extending the syntax to support identifying the use-case for each cookie, and allowing browsers to default treatment thereof without other than initial user-intervention) the world decided it was better to panic and put nag dialogs on everything to "show" that they're pretending to be compliant.

Your web browser does not even have to "announce" anything, if there were categories of cookies "required", "optional features", "tracking" then the browser could simply chose to ignore those you don't want..

Sure sites could ignore that and do everything with the "required" ones, but.. they can do that today as well, the nag dialogs are pure kabuki anyway.

To be honest, at this point, I'd much rather have "all you can track" be default if it meant I could avoid the nag dialogs.. It's not like they can't track me without cookies, and I can always browse in privacy mode and use different browser profiles to isolate cookies in the rare cases where I actually care.

But the nag dialogs are actually there and actively annoying every time I visit some site. They make my everyday experience worse, where even the evilest of tracking wouldn't even be very visible to me..

I just installed Brave this week and it has a setting to simply mute the cookie questions (and others) while, at the same time, maintaining your privacy.

I had a misconception that “hackers” had an out-sized influence in tech standards.

But the case of ad cookies / tracking is a nice sort of counter example to balance that notion.

Looking through these replies, it seems the overwhelming feeling is that good solutions have been proposed and anti-user policy was adopted anyways for profit motives.

Thank you for all the kind and thoughtful replies. I could have done a much better job in informing myself - though I hope this collection of replies serves to spark interest in others like myself that wasn’t aware of “do not track” efforts.

My naive first instinct is that if you want to win, you have to speak the language companies speak - by a stick like jeopardizing their profits, or a carrot like rewarding compliance with new customers.

IE- a browser extension that automatically composes a negative review for websites that do not respect do not track and are worth more than 10 million (no need to start by punishing smaller companies.) If you visit Nike, and they do not respect do not track requests, it also suggests Sauccony and Addidas if they do respect it.

The Brave browser can. https://brave.com/privacy-updates/21-blocking-cookie-notices...

Firefox can technically do some of that if you set "cookiebanners.service.mode" = 2 in about:config

https://www.ghacks.net/2022/12/24/configure-firefox-to-rejec...

I don't know why they're still tracking us. I never ever has consciously clicked in an ads banner. All my ads clicks have been my mistake.

They never get it right with the products they offer me. If I buy a car, why are they still offering me more cars? It's clear that I will not buy any more. There is no way they can track that I have already bought a car.

Every time I try to see a YouTube video and I have to wait because of the ads, I got angry. The product I'm seeing on the screen is associated with my anger and makes me hate that product even more.

There is a whole industry around tracking users that, I think, simply does not work as they sell, and it will never do.

This is the goal of the gpc project: https://globalprivacycontrol.org/

With GDPR, the question isn’t so much about cookies but more about getting your informed consent to track you.

It’s not something a browser can do automatically because then websites owners will not listen.

Some time ago, Microsoft did set on the do not track setting by default on one version of internet explorer and it basically killed the do not track project.

Why can't the EU clean up its mess and forbid cookie banners? Why do politicians meddle in areas they have 0 expertise in?

Questions over questions

For the same reason the advertising industry came up with "legitimate interest" as a fig leaf which now apparently includes serving personalized ads based on an ongoing profile built of you... you know... the thing GDPR was explicitly supposed to make opt-in and forbid as a default.

Telling advertisers they can't track you is like telling a kid not to eat the candy. They can't not do it.

Or limit sites to one cookie?