Latest News, Updates, Tutorials and much more

Blog

Cross Domain Cookie Consent

Cross-domain Cookie Consent  

ON THIS PAGE

Cross-domain cookie consent is used when you want to collect a user's Cookie Consent across multiple domains using a single cookie banner. This feature is useful when you redirect users to multiple websites or domains and helps to increase the user experience. 

What Is Cross-Domain Cookie Consent?

One of the key components of data privacy is obtaining user consent for the collection and processing of users’ personal data. This is regulated by most privacy laws, including GDPR, CCPA, CNIL, UK DPA 2018, and others: without Cookie Consent, websites can’t collect users’ personal data. The data privacy laws specify that every website user has a right to decide on what data they want to allow businesses to collect, use and share for their business operations.

The EU Cookie Law (ePrivacy Directive) requires you to use cookies and trackers on your website only if EU users have given their explicit consent for you to do so. Keep in mind, that the user must have the possibility to revoke Cookie Consent at any time.

The easiest way to get Cookie Consent is through a Cookie Banner.  A Cookie Banner usually is presented when the website user first visits the web page.

If you operate multiple websites from different domains or your website has several subdomains, cross-domain Cookie Consent is a handy option. Without cross-domain Cookie Consent, navigating from one domain to a different domain or website that also collects and processes their data, users will be prompted to provide consent again. This can be frustrating for users and decrease user experience. When cross-domain Cookie Consent is enabled, users, navigating from one domain to another, are not required to re-enter their consent preferences. Cross-domain cookie consent allows giving consent just once.

Cross-domain consent allows website owners to store cookie consent settings from a single user across multiple domains. Website visitors will only see a Cookie Banner on their first visit to a website and will not see the banner on subsequent visits to that site or other linked sites.

This means, if a user gives cookie consent for domain A, the same settings will be set for domain B as well, only showing the consent banner once.

For example, if the user consents for https://cookie-script.com/, the same cross-domain cookie consent settings will be set for 

https://cookie-script.com/cookie-consent,

https://cookie-script.com/documentation/cookie-banner, and other subdomains. 

Subdomain cookie consent could be activate too. For example, if the user consents for https://cookie-script.com/, the same cookie consent settings will be set for subdomain https://support.cookie-script.com/ and other subdomains.

Is Cross-domain Cookie Consent Allowed by privacy laws?

For most privacy laws, if several domains have identical set-ups of cookies and service providers, or the user gave consent to all cookies and other tracking technologies, present on all domains, cross-domain cookie consent could be used.

On the other hand, if the user gave cookie consent for a domain that uses just strictly necessary cookies, but another domain uses different functional and non-functional cookies, including Third-Party Cookies, cross-domain cookie consent is not allowed.

How to Enable Cross-domain Cookie Consent?

Conditions for cross-domain cookie consent from a user side

In order for the cross-domain cookie consent to function the right way, these conditions must be met from the user side:

  1. The user should accept third-party cookies.
  2. The user should not activate “Do Not Track (DNT)” in their browser settings.
  3. The user should accept cookies in the “Preferences” category since the cross-domain cookie consent sharing local storage item is classified as a preference cookie.

Browser-related restrictions, related to Third-Party Cookies

Cross-domain cookie consent sharing will not work for some browsers that do not allow third-party cookies by default.

  • Safari: Cross-domain cookie consent will not work with Safari, since the browser does not share third-party local cookie storage across different browser tabs.
  • Mozilla Firefox: Cross-domain cookie consent will not work with Firefox, since the option to block cross-site cookies in all windows is set by default. When the option “Delete Cookies” is enabled, the feature will not work with Firefox as well, since the browser clears all cookies for every new tab automatically, which prevents saving consent.
  • iOS browsers and iOS devices: Most Apple browsers use their built-in WebKit, the web browser engine, which automatically blocks Third-Party Cookies, so cross-domain cookie consent will not work with them as well.

Note that there is no workaround to circumvent these restrictions. It is a functionality of browsers aimed to protect users’ personal data.

How to Enable Cross-domain Cookie Consent Sharing?

Consent Management Platforms (CMP) help companies and organizations to comply with privacy laws. Businesses need to ensure that they are using a CMP that supports cross-domain consent and that they are configuring their consent settings appropriately. By using a CMP that supports cross-domain consent and working with partners to ensure compliance, businesses can build trust with their users and demonstrate their commitment to data privacy. Cross-domain consent is an important consideration for businesses that want to prioritize data privacy and ensure that they are providing a seamless user experience.

CookieScript CMP is one of the best on the market which ensures privacy laws compliance and has a wide range of functionality. First, CookieScript CMP  blocks Third-Party Cookies automatically, since it is a requirement by some privacy laws. Second, it displays cookie banners to users and asks for their consent on their data collection and usage. Third, it records user consent for proof of compliance and manages user consent across different websites and domains.

CookieScript CMP allows cross-domain cookie consent and subdomain cookie consent sharing. See the guide on how to activate consent sharing for subdomains

If cross-domain cookie consent is activated, the Cookie Consent banner and the Cookie Declaration on each of the domains and websites will show all identified cookies and trackers from all the domains and subdomains. All identified cookies and trackers will automatically be pooled together.

Frequently Asked Questions

What is cross-domain cookie consent?

Cross-domain cookie consent allows website owners to store cookie consent settings from a single user across multiple domains. Website visitors will only see a Cookie Banner on their first visit to a website and will not see the banner on subsequent visits to that site or other linked sites. This increases user experience, if you operate multiple websites from different domains or if your website has several subdomains. Use CookieScript CMP to enable cross-domain cookie consent.

Is cross-domain cookie consent allowed by privacy laws?

For most privacy laws, if several domains have identical set-ups of cookies and service providers, or the user gave cookie consent to all cookies and other tracking technologies, present on all domains, cross-domain cookie consent is allowed. However, if domains use different functional and non-functional cookies, including Third-Party Cookies, cross-domain cookie consent is not allowed. CookieScript CMP allows setting cross-domain cookie consent.

How to set cross-domain cookie consent?

CookieScript Consent Management Platform allows cross-domain cookie consent and subdomain cookie consent sharing. See the guide on how to activate consent sharing for subdomains

Can cookies track users across domains?

Most online analytic tools use cookies to identify users. If a website uses cross-domain cookie consent sharing and users do not block this option by their browser settings, users could be tracked across domains. CookieScript CMP allows cross-domain cookie consent sharing and subdomain cookie consent sharing.

How do I fix a browser that blocks cross-domain cookies?

To enable cross-domain cookies, change your browser settings to meet the following conditions: accept Third-Party Cookies, do not activate the “Do Not Track (DNT)” option, and accept cookies in the “Preferences” category. Use CookieScript CMP to set cross-domain cookie consent, or read the guides on how to change browser settings

How do cookies track you across sites?

If cross-domain cookie consent is used by a website, it allows website owners to identify a single user, get cookie consent once, and store cookie consent settings from a single user across multiple domains. Website users will only see a Cookie Banner on their first visit to a website and will not see the banner on subsequent visits to that site or other linked sites. Use CookieScript CMP to set cross-domain cookie consent.

Which browsers block cookies by default?

Safari, Mozilla Firefox, and iOS browsers and iOS devices block cookies by default. Settings of Safari and Firefox browsers are set to automatically block Third-Party Cookies. Most Apple browsers use their built-in WebKit, the web browser engine, which automatically blocks Third-Party Cookies as well. Read the guides on how to change browser settings

ON THIS PAGE

New to CookieScript?

CookieScript helps to make the website ePrivacy and GDPR compliant.

We have all the necessary tools to comply with the latest privacy policy regulations: third-party script management, consent recording, monthly website scans, automatic cookie categorization, cookie declaration automatic update, translations to 34 languages, and much more.