So almost every GDPR cookie consent banner out there has a section for “legitimate interest” cookies that they can leave on by default and you will inadvertently accept even if you choose “Reject all” unless you go to the detailed settings and disabled those too.
Some of them have dozens of legitimate-interest cookies.
I read some articles about what they are and why it is allowed to keep them on by default, but they were very vague. So can someone explain it to me like I am five?

  • PastaGorgonzola@lemmy.worldEnglish
    8·
    1 year ago

    It’s rather vague to me too, the most helpful summary I found was this one:

    In general, the condition applies when:

    • The processing isn’t required by law, but there’s a clear benefit to it;
    • There is little risk of the processing infringing on data subjects’ privacy; and
    • The data subject should reasonably expect their data to be used in that way.

    So “we don’t have to do this, and most likely it won’t be privacy sensitive, and you probably already know we want to do this, but you can still opt out”

    Source: https://www.itgovernance.eu/blog/en/the-gdpr-legitimate-interest-what-is-it-and-when-does-it-apply

    • nogooduser@lemmy.worldEnglish
      2·
      1 year ago

      I think that they ignore that second point.

      Advertisers have a legitimate interest to process your data and they use the legitimate interest option to do so completely ignoring the fact that they need to infringe upon your privacy to do it.

    • chuso@kbin.socialOP
      1·
      1 year ago

      Oh, that’s helpful and sheds some light, thanks.
      Still leaves a lot of room for interpretation, though! But it is what it is.