Does the GDPR define what the default behavior should be when the user refuses to specify? Does it vary by site? Is it like clicking either “Accept all” or “Reject all”?
Does the GDPR define what the default behavior should be when the user refuses to specify? Does it vary by site? Is it like clicking either “Accept all” or “Reject all”?
Legally, the user has NOT allowed ANY cookies then. (The law still allows the technically needed ones)
But in practice, it is not easy to find out what a website does.
I have a question, it’s maybe stupid but still:
Aren’t cookies, like, files on your device?? Can’t you just forbid websites to write anything to disk??
It’s not just about cookies, they spy on you in other ways.