A second wave of attacks began midday Friday after much of the eastern United States was affected in the morning. Sites affected included Etsy, ...
Tracking activity across the Internet is far from straightforward in the age of multiple browsers, devices and applications consumers use to access the web. Yet cookies dropped into browsers are still the main way advertisers target ads to consumers online. The IAB suggests alternatives that may protect consumer privacy while also improving marketers’ ability to make use of their web activity data.
A cookie is a small piece of code that an advertiser or publisher—such as a retail web site—inserts into a consumer’s web browser after she visits a particular site. This code keeps track of that browser’s unique identity so that the site recognizes her when she returns and can serve her content related to her past browsing. Additionally, if the same advertiser or retailer identifies the cookie “badge” it gave to the consumer’s browser when she arrives on a different site, it can use her activity there to serve her targeted ads elsewhere, too. That’s why a shopper might see an ad for Best Buy Co. on another web site after leaving BestBuy.com, for example.
In 2012, the IAB, which creates formats for online ads that are widely used as standards, formed the Future of the Cookie Working Group to discuss the problems that have cropped up with cookies and to develop a framework for creating cookie alternatives. The group recently outlined five classes of technologies for tracking consumers’ activities and allowing them to manage their preferences in a report titled “Privacy and Tracking in a Post-Cookie World.”
“Since they cannot be shared across devices, cookies lack the ability to provide users with persistent privacy and preferences as they jump from smartphone to laptop to tablet, and more,” says Anna Bager, vice president and general manager for the IAB’s mobile marketing center of excellence. That also means advertisers and publishers are less able to customize the content or ads they display to a consumer, she says, because they have less information about her web-wide activity. For example, if a shopper looks at a TV on BestBuy.com from a computer, when she moves to a smartphone Best Buy would not know to show her an ad for a TV on a return visit, or on another site. Beyond devices, differences in how a consumer receives the Internet—for instance, via 3G, 4G, LTE or Wi-Fi—and accesses it—such as via a mobile or web browser, or a smartphone or smart TV app—complicate the matter further.
The cookie’s problem also has much to do with the way web site content is assembled on a page today, adds Steve Sullivan, the IAB’s vice president of advertising technology. Most web pages load content associated with other web domains, which means that when a consumer visits one, her browser isn’t interacting with only data originating from that page, but also from potentially hundreds of other ones, too, he says. For instance, the page for a story on a newspaper’s web site might have ads served by other web domains (belonging to the advertisers), plug-ins from social media sites (which the page loads from those domains) and various, invisible pieces of code that the advertisers and the newspaper’s analytics vendors have added to keep tabs on how long the reader stays, where she clicks and other data.
“When a consumer wants to register a preference, for instance to opt out [of receiving targeted ads], that’s a message now that the consumer has to share with every single domain with which she interacts over the course of browsing the web,” Sullivan says. A decade ago, that would have been limited to just the number of web sites a consumer visits, he says. But today, after just a few web pages, a consumer’s browser may have interacted with hundreds or thousands of external domains to load all their content and tracking pixels.
That’s less than ideal for consumers, advertisers and content publishers. (An online retailer may at times be both an advertiser and a content publisher.) For example, a shopper might generally prefer to see ads that are relevant based on her browsing activity, but as a non-drinker, she never wants to see ads for alcohol, Sullivan says. Today, there’s no way for her to tell that to all web advertisers at once—the only mass move she can really make is to opt out of all behavioral ad targeting, he says. And not all advertisers participate in opt-out programs.
“Today if I wanted to say to advertisers, ‘Please don’t send me any Coca-Cola ads,’ that would be impossible to do,” he says. “Even if it was possible with one publisher, there’s no way for that preference to be persistent across the whole industry.”
Consumer privacy and cookies’ flaws—and attempted workarounds to them—have been receiving increasing attention. For example, Google Inc. has said it is working on a single “super cookie” that would track how consumers browse and shop online across any Google properties, including the Chrome browser on a desktop and the Android mobile operating system. However, only Google would have access to that data, which wouldn’t be of much help to advertisers or retailers, Sullivan says, unless Google makes that data available to them. So far, the Google ID is only used to serve consumers targeted ads within Google Play apps, and those consumers are able to reset or opt out of the tracking, according to the Android Developers’ Blog.
Meanwhile, new reports suggest consumers are becoming more wary of their privacy on the web, including how they are tracked, especially in light of recent data breaches.