Issues using Cookiebot inside iframes of third-party pages
Hi, we deployed Cookiebot CMP via Google Tag Manager (as outlined here: https://support.cookiebot.com/hc/en-us/articles/360003793854-Google-Tag-Manager-deployment).
Sometimes we need to embed pages via iframe on our own domain, for example: parent page www.example.com/some-parent-page has an iframe pointing to www.example.com/some-embedded-page
In this case, we were able to successfully deploy Cookiebot in both parent and iframe.
However, when we try to do the same in scenarios where the parent page does not belong to us, neither the Cookiebot dialogue window nor the widget are showing up although the CMP tag is firing according to GTM preview. For example: www.some-other-page.com/ features an iframe pointing to www.example.com/some-embedded-page
Any idea if there are any restictions?
EDIT: This behavior is actually browser-specific. In Firefox on Mac, the consent banner / widget is shown, while on Safari + Chrome it is not.
-
Hi, thank you for the input!
This feature was not planned; simply because I did not know about it :-)According to the docu there are 2 things:
- Adding data-src and data-cookieconsent attributes to the iframe
- Display a message if not consented
The "Display a message if not consented" task can be done by the module. We can add this placeholder before or after the iframe-tag via javascript.
Adding data-src and data-cookieconsent attributes to the iframe might be problematic. There is something to discuss:
Option 1: We can add these attributes via javascript. But what if the javascript is disabled on the client side? Actually entire Cookiebot widget will not work in this case. Will the website without javascript be GDPR compliant in this case?
Option 2: The attributes will not be added by this module. Website developers should add the iframe attributes manually.
0
Please sign in to leave a comment.
Comments
1 comment