Open volkipp opened 1 year ago
Well, if you decline all cookies there is no cookie that could save that preference. So that's intended behavior. I'd be cautious not to get into legal issues with that, but I'm not an expert in that field so I keep to reasoning that's plausible to me. Maybe that's answer enough, maybe you still see the possibility to implement this. If the latter applies, what would be your explanation for users that cookies are set when they chose not to? (there could be a reason, it may just not come to my mind)
Closing for now.
Sorry for the delay in responding @dargmuesli. What you've explained makes sense. I have noticed, though, that if you click "Decline All" it does store a cookie called ncc_c
with value 0
anyway, so that might be a bug if the intended behavior is that all the cookies should be deleted.
To boil down the part which isn't intuitive is that when the user makes the "Decline All" selection, they are immediately presented with the same choice again. I don't think most users are going to understand the nuance of the fact that their choice itself is stored in a cookie, so when prompted again it feels like a bug. There are a couple of ways to solve this that I can think of:
I tend to lean towards the second choice. The second option could also be turned on as a configuration setting in the Nuxt config file so it wouldn't be a breaking change. What are your thoughts?
I think the second option makes sense. Would you be up to implement that?
Hi @dargmuesli and @volkipp, I would also the Decline All button to close the modal and the cookie bar as well. Did you make any progress in this feature request?
I don't think so.
Well, if you decline all cookies there is no cookie that could save that preference. So that's intended behavior. I'd be cautious not to get into legal issues with that, but I'm not an expert in that field so I keep to reasoning that's plausible to me. Maybe that's answer enough, maybe you still see the possibility to implement this. If the latter applies, what would be your explanation for users that cookies are set when they chose not to? (there could be a reason, it may just not come to my mind)
hello @dargmuesli I did some research on this topic and according to https://gdpr.eu/cookies/ (section Cookie compliance) you must "Receive users’ consent before you use any cookies except strictly necessary cookies."
A cookie storing info about the consent state could be considered a necessary cookie and you can store it even without the user's consent.
I have also checked a couple of cookie consent services and that is exactly what they do. They store a cookie consent cookie even without the user's permission.
You can check for example these sites: https://www.cookiebot.com/ https://www.cookieyes.com/
I suggest that nuxt-cookie-control closes both modal and cookie bar after declining all cookies.
Well, it's not really only about the necessity of consent fetching but about denying consent. There are two primary thoughts that I see:
But a solution for 2. could also be to design the cookie banner differently.
btw, both sites, https://www.cookiebot.com/ as well as https://www.cookieyes.com/, currently seem to have broken cookie policies themself:
not sure if those are indicators of trustworthiness...
@dargmuesli Hey, any update on this? I think storing a cookie about not storing any cookies is withing the scope of essential cookies.
No, some legal expertise would be a nice to have.
Environment
Reproduction
https://stackblitz.com/edit/github-whwnbg?file=app.vue
Describe the bug
When clicking on the "Learn More and Customize" option in the cookie consent bar to open the modal, clicking "Decline All" closes the modal, and re-opens the consent bar.
The expected behavior is that all cookies should be declined, the modal closes, as well as the full consent bar.
If this is the intended behavior, would it be possible to allow that behavior to be configured through the nuxt.config? It appears that the code which would need to be changed is
/src/runtime/components/CookieControl.vue
line 270.isConsentGiven: false
.I would be happy to create a pull request for this issue.
Thanks!
Additional context
No response
Logs
No response