[krageon]

Refuse all needs to be the default, because that is the law. Even when it comes to the intent of the law (which is to give control to the user and also not make lazy users "accidentally" give up all of their right to privacy) they are not doing fine. They're doing better than their peers, who have made even more malicious choice dialogs.

[nolok]

I agree as a matter of "how is the law written now", I was talking more of a "how I hope as a user that it could/will be".

If we go with everything off by default by law and try to apply it, we will end up with a broken web, meaning websites will not follow the law because it makes a stupid and not be punished for it because it's become the norm, just like the (bad) cookie law.

I'm ok with how it is on their site (based on how easy it is to disable, myself I disable all on such sites); it's quick with only 2 clics total, and it's easy to figure out with a clear color scheme and wording.

It's important to understand we make the law not for us tech users, but for everyone. Finding a solution that works for everyone and gives them what they want is important.

[icebraining]

Why would we end up with a broken web?

Remember that consent is only needed if you can't rely on one of the other conditions for storing that data. If you are, say, selling a product, there's no need to ask for consent at all for using the customer's data to bill them and ship it. If the user changes some setting in your site, there's no need to ask for consent to store that preference.

[krageon]

Websites will learn to follow the law or they will die. And the web will be better off for it. Stacking dark patterns has been a thing for way too long, it is high time that movement dies.