Global Consent Manager

Video in TIB AV-Portal: Global Consent Manager

Formal Metadata

Title
Global Consent Manager
Subtitle
Improving User Privacy and the Consent Experience for Trusted Websites
Title of Series
Author
License
CC Attribution 2.0 Belgium:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.
Identifiers
Publisher
Release Date
2019
Language
English

Content Metadata

Subject Area
Abstract
Global Consent Manager project is a collaboration between Mozilla, University of Missouri and University of Nebraska Omaha. The result is a browser extension prototype that helps with managing of GDPR cookies and consent dialogs across trusted websites. Description of how consent management on the web works today, and the relationship between user privacy and reputable content providers. Web users face a confusing array of data sharing choices, and click fatigue can lead to poor user experience and possible inadvertent selection of options that do not match the user’s privacy norms. Reputable content providers face revenue disruption arising from changing data privacy regulations. In this session, we will discuss how to improve the consent experience. New standards for user control of data sharing present an opportunity for sites trusted by users to work together with browsers to implement data sharing choices that provide a better experience and a more accurate reflection of the user's privacy preferences.
Loading...
Demo (music) Internetworking Multiplication sign Self-organization Website Information privacy
Reynolds number Data management Prototype Internetworking Drill commands Multiplication sign Projective plane Content (media) Website Website Information privacy
Email Standard deviation Table (information) Information Multiplication sign Content (media) Interactive television Maxima and minima Bit Digital signal Content (media) Automatic differentiation Information privacy Arithmetic mean Internetworking String (computer science) String (computer science) Software framework Website Self-organization Right angle HTTP cookie Gamma function Information security
Web page Implementation Standard deviation Link (knot theory) Multiplication sign Data storage device Disk read-and-write head Regular graph Information privacy Vector potential Web 2.0 Data management Prototype Word Computer configuration Computer configuration Single-precision floating-point format Website Energy level Integrated development environment Website
Email Demo (music) Multiplication sign Demo (music) Content (media) Automatic differentiation Information privacy Formal language Internetworking Computer configuration String (computer science) Software framework Website Integrated development environment HTTP cookie Information security Gamma function Website HTTP cookie
Software framework Website Formal language
Data management Lemma (mathematics) Mereology Vacuum
Web page Trail Information Twin prime Multiplication sign Interactive television Similarity (geometry) Mereology Data management Prototype Personal digital assistant Website Right angle HTTP cookie Extension (kinesiology) Vacuum
Game controller Link (knot theory) Gamma function Extension (kinesiology)
State observer Digital photography Twin prime Personal digital assistant Computer configuration Demo (music) Website HTTP cookie Extension (kinesiology)
Web page Trail Standard deviation Observational study Observational study State of matter Price index Web browser Regular graph Prototype Data management Integrated development environment Personal digital assistant Website Right angle Extension (kinesiology) Row (database) Extension (kinesiology)
Computer icon Link (knot theory) Observational study Observational study Information Normed vector space Maxima and minima Website Extension (kinesiology) Local Group
Trail Server (computing) Hoax Real number Multiplication sign 1 (number) Web browser Mereology Rule of inference Automatic differentiation Web 2.0 Optical disc drive Prototype Kinematics Touch typing Energy level Extension (kinesiology) Scripting language Standard deviation Link (knot theory) Scaling (geometry) Information Block (periodic table) Software developer Projective plane Fitness function Electronic mailing list Interactive television Counting Maxima and minima Flow separation Personal digital assistant Bridging (networking) Website Musical ensemble HTTP cookie
Canonical ensemble
so this is my first time doing
presenting in a not in my own company or organization so bear with me I'm gonna make mistakes we'll live and if we have a live demo which includes the internet
which has been spotty so we can see what happens I can talk about around it so hi I'm Thom I am contribute to and contractor with Mozilla for some time and I'm talking I'm gonna talk to you about Global Content Manager it's a tool a project and prototype for exploring how to better work with GDP are compliant compliance dialogues across websites on the Internet
so it's a project between Mozilla University of Nebraska University Ohio and Reynolds in drill this Institute which are all interested in moving beyond the current status which is as we all know not great so we are in Europe
so I'm gonna guess everyone is familiar with GDP are right and the thing that that concerns us more most on this talk is about the consent dialogues across websites that have to ask before tracking or actually keeping any any personal if any info about the visitors which includes spam protection or anything so they all feel obligated to do it right upfront and right when you first visit the website and it's important for for them to stay compliant with the gdpr it's a long complicated legislation but we leave by the end of the talk see that it doesn't have to be like the lose-lose situation for everyone we are all familiar with these and who has clicking I accept or I don't accept or something would third that doesn't they don't even understand what they are clicking every time so everyone is
everyone is compliant our world companies you not in Europe are finding it easier to comply than to say great their websites some of some of them summer summer not saturate their website for European consumers and non-european so basically if you live on planet earth do DPR applies to you and you're affected in a some way so what what's the issue with GTR it says that you have to get meaningful consent from a person before tracking or keeping any kind of personal information about them if that means that if you sorry how how does the consumer decide to give trust to them to the website a right upfront when they first see the dialog they don't have enough information to know do they trust this website to to give it consent to track them or to personal the ads or whatever so even the industry the interactive ad Bureau is a industry organization that deals with online advertising they're working they have a proposal for standardized GDP our compliance and their work they're working on common consent that a consent cookie bit and cookie string that has the depth that would be transferable from website to website that would be common a definitely common way to interpret what does what does consent mean when you click I agree or I don't I don't give concept what does that mean in each site and they are doing this to actually help help smaller businesses be in compliance with GDP are so that you don't have to you don't have to hire lawyers for each and every regional each other businesses have to hire lawyers to interpret what does complying with GDP I mean it's a first good step forward but it has it has flaws it has downsize it's mostly concerned with protecting the industry and not with protecting the users and informing the users and giving them a way to give meaningful consent so we are working we are proposing we are going to work with industry to propose better solutions and that would be what what Global Content
Manager comes in this is a tool for now which is a prototype for research purposes and also useful useful for regular users in Europe and across the world that has deficit is able now to give you a glimpse of what potential future for consent the consent dialog and GD / compliance might be in the future it's like a regular add-on on the headings on the Firefox add-on store you can just go just search for it install it it's like fairly simple the idea is the bigger issue the implementation and then talk about the implementation later but this is mostly built for a prototype for research purposes for now and to be useful for users at the same time and come to bring something meaningful to the industry as a standard for later so
how is it good for you if you ever flipped without just then you get up then you get a link to a website that's a new story it's the first time you visit the website you don't really care to interact with it on a meaningful level you just want to read the article that you got me right so you mostly as most users if your privacy conscious you try to find the small usually hidden option to not I don't consent but still give me a way to view the website if your as most users you generally going to hit the most bright green or whatever button and click except you don't have to mean it obviously they don't know that you they have legal protection that you clicked it and everyone's happy except that you gave consent that you mean you didn't mean to or you spent like five minutes looking for the option to not give me consent what's worse some websites I'm not gonna I'm gonna name names like the word or some other websites don't even have an option to not give them consent until what still read the Articles they're gonna keep bugging you they're gonna kick us keep asking you for consent on every single web page until you say yes so basically every web every every page
that we stick constantly has the bar underneath and you're annoyed and you're not productive and even worse things
happen so I'm gonna attempt a live demo
now the idea behind the basic idea is to only present a consent dialogue once user has a meaningful relationship with the website what does that mean if you are visiting the website for the first time you don't know if you trust them you don't know if you want to get consent to keep the cookie on you or whatever you don't know who they are and you don't you can't actually decide the only thing you can decide is to click no or if you don't care you can mash that button and get the content so if you visit the website regularly it makes sense that after you after you have a relationship you know who they are you have the you know the brand you are able to meaning meaningfully understand when they ask you we will use these cookies to personalize personalized ads for you or remember your preferred language or topics or whatever they are using cookies that they need consent for they're gonna be able you're going to be able to understand what they're asking and you're going to be able to meaningfully give that consent how does that work I'm gonna try a live demo hopefully it works since we are in
Belgium this is one of the websites that we support from I'm not even sure what the website is I don't speak the language this is how it works how it
looks without in the normal way and you
go to the part of say don't search for
global concert manager at Firefox in or
in my case enable it and on the next visit both of the website voila you get
regular normal website you don't get bothered you haven't given consent this is the important part you haven't given consent they are not tracking you right now they don't know anything about you yet they are not you don't you don't have information and what does it do it says right here on the status this is the status page this is a manager side this means that we know about this side and first visitors today not trusted this means that we don't know this we have seen you visit decide decide the extension keeps track of the size of visit it's not going to start trusting your website just by five times refreshing the page but if you visit a site on five different days that seems like something that you might be interested in the future and until then it's going to block the consent dialog from flowing up that works for we have like a hundred website that we support for most patrol news and similar websites across you the world and we're adding any new popular website that user or requesting in this prototype stage how does it actually work it works in two ways it either sets a cookie for you automatically to indicate to the website I am NOT consenting to tracking so if you visit the website one some of the website supports something like this that they are well behaving website you can set a cookie instead of you navigating and finding the button to to click I don't consent we do it for you when you visit the website right away until you have a meaningful interaction we website you get prompted after fed after five visits and after five days of visits it could be over a month it could be every single day for a week you get actually presented from from will allow the extension allows the dive site to ask you for consent right there before there you can manually allow the website to ask for consent or you can after it
after it other extension allows it to
ask you you can manually denied so basically always in control you can keep the dialog sorry Farrington's
overflowing you can give the trust you can answer the question you can I'm
gonna guess the green button does the thing that they want me to do and that's
basically it's very simple so that's the
well be having websites not on website in fact most observers are not behind they don't have a simple cookie based way to indicate that you're you do not consent so in that case we use simple CSS to hide the consent dialogues it's a little rocky but well it works so that's that's what how the extension for now works this is so as I said we go back
this is the you can see probably more clearer what it looks like when you first visit your website persistent not trusted and you have always an option to manually allow them to ask you photos and you can give it you can you can do whatever after that those are the
three meaningful States its first visited previously visited so that's when you move in there we know that you've been there but not yet in fully trusted trusted state and after currently it said that's that this is a prototype we have other ideas for example if you write a comment on a website we could use that as indicator that you want to interact with the website that so that can be that could trigger a trust there are other other ideas some that we might implement later but the general idea is that the browser or in this case extension but the end goal is for the browser to do this for you if we can agree on the standard with publishers for browser to manage that for the users and for the websites it can create a better environment for everyone why do why do I'm so completely saying that because really because we
did a user study with extension for regular users browsing news websites I think it was done in Ohio so a US president and this is the the right one is obviously the users are more likely to stay in the website longer to visit more web pages were not bombarded with the consent dialogue right away they are likely to after have a meaningful relationship with the website if they do and later you can date the site can ask them for consent and the extension currently and in our proposal for the future of the browser managers does that for you it keeps track of the trust sites if you trust the record let them lets them ask you for consent and so we
have this is it you can learn more about the we have a website with lots of How to Lose it goes in details how it works how it how you can map how you can set set it up the way you like it has some background info if your basics and it has the user study that I just cited
it's listed on the website and that's it
I have out a question this is I this is all dry information this is not a fun thing to talk about like marionette or like HTTP 3 film from Daniel and it's hard to follow but I've run to it I will take questions and if we don't manage to find you later I'll I'm happy to talk [Applause] anyone any questions ok so how do you care not to get like any ad blockers website will inform you this a Vlad blockers if you want to with our website yes that's one of the possible venues we strictly try to keep it separated showing ads is still important for the website to maintain their financial situation and to be able to so we've kept this this issue separate from blocking ads but that's one of the possibilities for later for well be having web 2 for browser to do that for you to let the let the well be having website show you ads and those the ones that don't obey any rules they don't the way don't do not track them down the day don't behave well they will it's possibly we could go into blocking their ads automatically or even worse things like track blocking trackers which Firefox is doing independently of all this so I think and what about the data you catch how often high or how regularly I will do the website do you sketches locally at my browser that's the extension just it just seems like a date and for the first five dates that it because he doesn't want to count five visits on the same date so it just saves the date for each website that you visited it lasts and any season you that increases the count by one when Jesus reaches five it stops counting it's minimal information needed to implement the fit feature hopefully if we reach a standard for among industry we can do the browser could do this you already tried the browser browser has the history for you and you can do even better but currently it is minimally minimally that data invasive way for you to actually provide a feature for you okay thanks hi I have a question I believe so if I understand correctly when you read to add a new site it you just need for the technical way with a cookie to say that you refuse tracking there is no contact with the site itself so for example if I want to add one website which is not currently supported although I proceed and if you are interested in the details you can investigate yourself when selecting I don't consent and see what what cookie it said you don't have to do that we can do it if you if you don't know how to do it but you report the website we we're gonna if you if you are inclined you can do it yourself and report what it does you can we accept all requests as well so it's just a list of websites and the rule to either set CSS or to set the cookie for now it's very simple it's very explanatory and that's how we do adding in for we are talking about automatically updating but people so that possible on the future so you know any other question we have okay sorry so currently I use an ad blocker to block these things what would be the benefit for me to switch to this extension are they really like any edge cases or does the site behave differently when I'm using this extension compared to normal at blocker it just hides the notification when you say does it hide all the content dialogues for you well as some of them not all of them yeah ad blockers are not meant for that some that do that it's mostly by accident it's not their main purpose and the second band so this is specific specifically to for that so it can be work it's going to work better at this for this you can use it with an ID blocker it doesn't interact with each other in any way so you eat the ad waterboxx ads and tracking scripts this block these blocks and dialogues what what's the benefit for you for using this instead of an ID blocker depends on if you care about the web sites showing you ads and everything this just lets you let's you be less annoyed by all the dialogues but still allows showing the odds in case either not targeted or targeted after you accept the after you give consent so if you care about journalism very financed and reading your journalism and fake news and everything that's ago I don't have to go into that story but that's one of the reals why would you would use this instead of block fully blocking ads for the website so basically it's more ethical is that what you're saying it's more ethical because I will see ads but I will not be tracked don't want to get you kinetics I want to say it's more practical because this is how we get you can find or this is interest as I saw in the reserve this is in the interest in the interest of the industry as well so we believe it's a win-win situation win-win situation for everyone if we can get to this this is obviously just a prototype manually doing this this is not this does not scale we can do a thousand that most of the websites and that's going to cover a lot but it doesn't scale so we believe everyone wins if we implement something like this on the browser level as a standard across Pepsi so that's the goal okay any other question okay this is the last one let's still assumes that the server side is well behaving but if you declare you don't want to be tracked and the server says okay I hear you but I'm going to ignore you yes you can tell that yes we have lost for that I mean nothing you can't go all from working for yourself but that has other issues you break things you don't let them finally finally the self this is mostly for you meant to handle the meet the mainstream use case so a big website that has a brand that wants to interact with users in a meaningful and trusted way to build trust so this is mental we have Firefox has an T tracking for the other cases and it's slightly related but it's not exactly anti tracking is not meant for those websites that have brands and want to preserve it and don't want to do shady stuff so this is meant for that part the anti tracking doesn't need to touch Newark times and the register or hopefully that's the that's the world in which I would love to like to live so that's what I'm what we're working just I don't think I've said I was I'm not usually the person who present these things I'm developer for Mozilla and I was technical support for this website most of the idea and research and everything was done by these situations on glow so Mozilla must I believe Don Marty at Mozilla was the original idea the University of Nebraska Omaha and Missouri with Ramos Jews Reynolds journalism Institute are doing the heavy work on this and like a technical monkey but I also like I also believe in the project so that's why I'm here thank you okay thank you so much tomislav thank you everyone [Applause]
Loading...
Feedback

Timings

  404 ms - page object

Version

AV-Portal 3.20.2 (36f6df173ce4850b467c9cb7af359cf1cdaed247)
hidden