[laughinghan]

> They are able to do this because sears.com loads Criteo code and uses a criteo.com cookie

> there may not be much you can do about this besides blocking cookies

Most browsers let you block 3rd-party cookies without blocking all cookies (in this case, blocking the the criteo.com cookie but not the sears.com cookie, when on sears.com): https://www.maketecheasier.com/disable-third-party-cookies-c...

[Veratyr]

There are also addons like uMatrix (https://github.com/gorhill/uMatrix) which allow you to selectively block cookies by domain. By default it loads a bunch of ad blocking stuff too but you can turn that off if you really want.

[mirimir]

I use Firefox. I always use private browsing mode. I accept third-party cookies, but I delete all cookies and history when Firefox closes.

[richardwhiuk]

Does this actually count as a third-party cookie if the sears page loads criteo in an iframe (which may be 1px by 1px, and tell criteo that it was invoked by sears)?

[ubernostrum]

"Third-party" is based on the domain shown in your browser's address bar. If that shows sears.com, then domains which aren't sears.com are third-party.

[ceejayoz]

Yes, it does. criteo.com is a third-party domain when on sears.com.