Question regarding Vimeo, GDPR, and cookies

  • Resolved montseel

    (@montseel)


    1 year, 11 months ago

    Hi,

    First of all, I’d like to say that I’ve been using your plugin on several of my client’s websites and I’d like to say that I’m very happy with it. I had one website in particular that embedded interactive objects from many different services, and I was able to block the cookies manually using your plugin. So thank you very much.

    Back to the topic. I’m trying to avoid unnecessary cookies on my own website, and so far I’ve managed to comply with the GDPR without a cookies plugin. Recently, however, I embedded a video from Vimeo using the “Do not track” option. Everything works perfectly, and no cookies appear, except in one case:

    • I’m logged in using any of my google accounts, AND
    • I access the post I’ve linked above

    In this case, the “vimeo cookies folder” is full of cookies, including a couple of _ga cookies.

    Is this really GDPR compliant? I know I’ve logged in into my Google Account, but I haven’t given permission to Vimeo to track me, even if I’m logged in.

    Thank you very much in advance.

    Kind regards,

    Montse

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Contributor Aert Hulsebos

    (@aahulsebos)

    Hi @montseel,

    I see what you mean. However, this only happens at my end when I visit your Vimeo video on vimeo.com as well. On vimeo.com the cookies are set and linked to your account, when you go back and load the video on your website you see the cookies on vimeo.com.

    It didn’t happen on your website, but through Google, on vimeo.com itself. Although website operators are fully responsible for cookies they set, I’m hard-pressed, but not certain without some research that entering a website with cookies from a main URL, that is again loaded as resource by choices made previously is your responsibility.

    However, to navigate away from this you can opt to remove DNT parameters and set a placeholder so Vimeo is not loaded by default.

    regards Aert

    Thread Starter montseel

    (@montseel)

    Hi Aert,

    Thank you very much for looking into this. You’re right – you must be logged in into Vimeo for this to happen. My apologies: I thought I had checked it thoroughly and believed Google was the culprit.

    What you say makes sense: if, as a Vimeo user, I accept their cookies, in a way it’s logical that the website will track me when I visit any website with embedded Vimeo content in it.

    I understand the point though that in terms of the GDPR it’s hard to say whose responsibility it is to block these cookies. I think that, for the time being, I’ll leave it as it is, and maybe in the future will start blocking videos, especially if I change to YouTube.

    Thanks a lot again for your help and input.

    Best,

    Montse

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Question regarding Vimeo, GDPR, and cookies’ is closed to new replies.