-
-
Notifications
You must be signed in to change notification settings - Fork 379
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Completely disable blocking on optout.aboutads.info #1606
Comments
The problem may go deeper than just allowing third-parties on the advertising industry's opt-out page since even if we allowed the setting of opt-out cookies on that page, we would still block the sending of these opt-out cookies elsewhere. As opt-out cookies are, at least in my view, an inferior alternative to Do Not Track (which Privacy Badger aims to promote), it doesn't seem to make sense for Privacy Badger to attempt to support opt-out cookies. |
We may want to do something specifically on the
Targeting new domains in the manifest might be blocked by #1619. |
Some error report messages:
|
I was looking into this. Would adding a red badge to the icon when visiting the site (see here) and some information in the popup be enough? |
Hi @regier21! I was looking for some good reference text to base our messaging on or an article to link to. Here are a few relevant paragraphs from a 2017 article about Twitter dropping support for Do Not Track:
So, DAA's WebChoices:
|
We could style the badge to draw attention to the popup and then communicate the above points somewhere in the popup. We could also add a dedicated page content script that constructs and injects a informational banner into I suggest making and sharing a mockup of whatever you'd like to try first, before spending too much time on it. Thanks for looking into this! |
This is similar to #1596 where one idea is to detect anti-adblock messaging and then show our own messaging that explains that Privacy Badger is not an ad blocker and that you should consider getting in touch with the website to communicate your displeasure with its approach. Both in #1596 and here, we want to communicate some information about the current website, whether in Privacy Badger's popup, directly within the page, or in both places. This notification is higher level than "Privacy Badger blocked X potential trackers"; it's also not routine/not applicable to the majority of visited websites. |
@regier21 a couple problems with that prose that I notice off the top of my head:
|
Thanks for the mockup! To add to the points above:
For an example of an existing modal dialog, inspect Privacy Badger's background page, set For an example of existing Privacy Badger UI that gets injected into pages, visit a page with embedded widgets (for example) that Privacy Badger can/does replace. I think the hardest thing about injecting a message directly into pages is making it clear that the message came from Privacy Badger. |
Agreed. Perhaps we could style it like a popup dialog box, with the background semi-opaque? That would solve a few issues:
|
See below for a screenshot of the We could take the in-popup modal + "alert" badge approach as was originally suggested, as that is simpler and may be good enough. |
Hmm one of my concerns about a pop up is that the site already generates a popup after it checks all the cookies, so it would be a popup on top of a popup. See the image below: I think doing what PB does with Discus and just covering all of the content until you acknowledge it would be preferable as it would only be a single popup at a time. Regarding the text: I copy-pasted what @ghostwords said in the thread as placeholder. I agree that just a few words and a link would be great. Do we have a site to link to in mind? Has the EFF written about the DAA that isn't just talking about Twitter? |
To clarify, when I write "popup" above, I'm talking about Privacy Badger's extension popup. |
Just chiming in here with some thoughts about the proposed changes to showing messaging on the webpage and/or popup: I definitely agree with @ghostwords that whatever text that shows up on the actual page should be as brief as possible. It might be worth just telling the user that there is some shady dark-pattern like behavior taking place on this particular site, and then linking to a lengthier description in the FAQ section of the Privacy Badger page Instead of using the critical error modal in the privacy badger popup, it might be worth adding a section like the ones proposed in #2748 — this could be especially useful if we decide down the road to use Privacy Badger to point out other dark pattern behaviors that sites do to trick users into consenting to being tracked As for the injected bit on the web page, maybe it ought to be similar to the widget replacement modal that Privacy Badger already does, at least in appearance. The "allow" buttons could be changed to some other text, with the option being to close the message or opt into higher privacy settings. |
I recently got linked to http://optout.aboutads.info/ from a Google opt-out page. Privacy Badger seems to have blocked 65 requests to advertisers participating in that page.
Obviously it's doing its job pretty well, but in this particular case we actually probably want to allow those requests through since for once requests to these domains are for a privacy-protecting purpose, not the other way around ;)
The text was updated successfully, but these errors were encountered: