Google Plans To Eradicate Cookies

Uploaded on 2021-05-25 in FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Regulators and rivals have raised concerns about Google’s grand plan to rewrite the rules of online advertising. Google is to restrict the number of advertising cookies on websites accessed via its Chrome browser, in response to calls for greater privacy controls. It said that it would phase out third-party cookies within the next two years, 

Millions of people are already part of a global experiment to delete cookies once and for all. Since last month, Google has been testing new browser-based technologies in Chrome that could turn the global advertising industry upside down.

Cookies are small text files that are used to track users across the web. Cookies are used to collect user data, which can be on both an aggregate and anonymised level, such as clicks on page, pages viewed, engagement elements, and also on a PII (personal identifiable information) level, such as device IDs, names, addresses, passwords and credit card numbers. Most of the people involved in the process may not even notice, but as the project gains momentum, critical voices sound the alarm.

While Safari and Firefox both block third-party cookies by default, the user has the ability to turn them on. Google will not have such a feature. Third-party cookies will be blocked with no method of allowing users to turn this feature on.

 In addition to the elimination of third-party cookies, factor in that Google Chrome is by far the most popular web browser with an estimated global market share of 62.8%. The closest competitor is Apple’s Safari with a mere 15.8%. The supervisory authorities in Germany, France and Belgium are examining Google’s proposals. At the same time, some of the world’s largest websites have decided to skip Google’s trials entirely. A number of companies have already developed ways that people can evade the system.

The system, known as Federated Learning of Cohorts (FLoC), is part of Google̵7;s larger Privacy Sandbox plan that will end third-party advertising cookies in early 2022. There are generally three ways that websites choose which ads to show you. You may see an ad for a pair of sneakers because you put them in a shopping cart last week. If you’re reading an article about cars, the ads may also refer to cars. or the ads you see may be based on your interests. Like third-party cookies, FLoC deals with advertising based on your preferences.

Currently, advertisers can use cookies to serve ads that are specific to you as they are based on your individual browsing history. FLoC was developed to eliminate this individual targeting by broadening the network.

When you use FLoC, Chrome gathers your web history and compares it with the habits of others. You will then be placed in a group or cohort with thousands of other people like you. Advertisers can then target entire groups of people and not specific people.

It’s not just the extent of the change, it’s also who is behind it. Google, whose parent company Alphabet  dominates the global advertising industry. The regulators are understandably suspicious.

“The FLoC technology leads to several questions regarding the legal requirements of the GDPR,” says Johannes Caspar, Data Protection officer for the German state of Hamburg... "The implementation of users in the FLoCs can be seen as a process of processing personal data. And this requires freely given consent and clear and transparent information about these processes. Google needs to ensure that users actively choose to use FLoC instead of enabling the system in Chrome by default." Caspar adds that there are risks in how cohorts allow “inferences” about people’s surfing behavior and how specific the cohorts of FLoC will be.

Not only German regulators are concerned about FLoC. A spokesman for the French National Information Commission and the Libertés (CNIL), France’s data regulator, says it is “paying particular attention” to technologies that could replace cookies as they may require access to information already on people’s devices are stored.

It is clear to the CNIL that such a system would require “specific, informed and unambiguous consent”. If Google doesn’t do this, it can prove costly. In December 2020, the French regulator fined Google $ 120 million for failing to obtain user consent before using cookies. Other regulators are more concerned about antitrust law. In Belgium, officials are keen to understand how competitive future systems are and how they comply with data protection laws.

  • In the UK, the Competition and Market Authority and the Data Protection Authority, the Information Commissioner’s Office, have been investigating Google’s proposals since January.
  • The Irish Data Protection Commission, which is responsible for many large technology companies with European headquarters in Dublin, has, according to its own information, consulted with Google on the proposals.

Google is aware of the potential pitfalls of FLoC. In this case, the technology has yet to be tested in the European Union. “The EU data protection law sets high standards for the transparency and control of the users. This is what we envision for FLoC,” says Marshall Vale, Chrome product manager at Google. “We know input from data protection authorities is key to getting this right, so we started discussions early on about the technology and our plans.”

Google has already announced that it will introduce tools that will not allow users to be classified in FLoC cohorts.

AIthority                Wired:       HiTech Glitz:          Deloitte:        TheTechTrack

You Might Also Read:

Social Media & The New Advertising Model (£):

 

« Cyber Security For Small Business
Maritime Shipping Is An Ideal Target For Ransom »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

CERT-In

CERT-In

CERT-In is a functional organisation of the Ministry of Information & Electronics Technology, Government of India, with the objective of securing Indian cyber space.

Cyber Secure Forum

Cyber Secure Forum

The Cyber Secure Forum is a premier cybersecurity event dedicated to bringing together experts, and professionals to explore the latest trends, share knowledge, and discuss strategies.

Telefonica Tech

Telefonica Tech

Telefónica Cyber Security Tech is focused on the prevention, detection and appropriate response to security incidents aimed at protecting your digital services.

Somansa

Somansa

Somansa is a global leader in Data Security and Compliance solutions designed to protect valuable company information from leakage and help meet regulatory compliance requirements.

Codified Security

Codified Security

Codified is a testing platform for mobile application software. We make it easier than ever for companies to detect and fix security vulnerabilities and ensure their applications are compliant.

Horiba Mira

Horiba Mira

Horiba Mira is a global provider of automotive engineering, research and test services including services and solutions for automotive cybersecurity.

ACET Solutions

ACET Solutions

ACET Solutions delivers a wide range of Automation, Cyber Security and Enterprise IT/OT Integration Solutions to industrial clients.

RiskXchange

RiskXchange

RiskXchange's cybersecurity risk rating solution helps businesses solve complex cybersecurity and compliance challenges by providing a 360-degree view of your cybersecurity posture.

Singular Security

Singular Security

Singular Security help public and private organizations minimize cybersecurity risk and pass their IT compliance audit.

Gijima

Gijima

Gijima is one of SA’s leading ICT companies in Cloud & Outsourcing, Systems integration, Human Capital Management & Training, Cybersecurity, and Unified Communications.

Wizard Cyber

Wizard Cyber

At Wizard Cyber, we simplify cyber security, delivering an advanced service that protects your high-risk assets from the complex threats that technology alone can miss, 24/7.

eCentre@LindenPointe

eCentre@LindenPointe

The eCenter@LindenPointe provides assistance to the development, management and promotion of STEM (Science, Technology, Engineering, Mathematics) related business ventures.

SpireTec Solutions

SpireTec Solutions

SpireTec Solutions is an IT management training company offering 1500+ courses with state of art training facilities backed by a team of industry experts in various domains including cybersecurity.

Tausight

Tausight

Tausight is an AI-Powered patient data security startup with a mission of reducing healthcare cyber incidents using a more proactive, risk management philosophy.

2021.AI

2021.AI

2021.AI serves the growing business need for full oversight and management of applied AI.

True Corporation

True Corporation

True Corporation is Thailand’s leading Telecom-Tech company, empowering people and businesses with connected solutions that advance society sustainably.