Symantec CEO Urges Cookie Notification

The head of a leading security software vendor denounced the use of data files commonly used by Google Inc. and other Web sites to track user activity, saying such sites should seek permission ahead of time.

John Thompson, chief executive of Symantec Corp. in Cupertino, Calif., said the files, known as cookies, "are just as much an invasion of privacy as someone peering in my bedroom window."

Most major Web sites -- including Symantec's -- use cookies in some fashion.

Although some cookies are essential for remembering passwords and customizing a user's Web experience, they also can be used to create a profile of a user's online activities. Thompson said people are sometimes unaware that a cookie had been created or what gets done with any information collected, such as to target advertising.

"I don't have an issue with people having cookies on their machine as long as I've been told one just got planted there," Thompson said. "I think there is an opt-in option here that should be available to everyone."

He questioned whether there is a "difference between a peeping Tom in the physical world and a cookie prying into my private affairs in the digital world."

Thompson was in Brussels to speak to EU regulators about such issues as Internet security and data privacy.

He would not say if he thought the European Commission should flex its muscles and require user permission for cookies, merely saying "if the EU felt that was a problem, they might want to insert themselves here."

Thompson said he would want to know what Google would do with personal information if it takes over online ad tracker DoubleClick Inc. -- a deal that is already raising concerns about the control the deal would give Google over online advertising and data it collects about search terms.

Google has tried to soothe EU concerns, cutting the time it retains data from 24 months to 18 months. The company also agreed to shorten the life span of its cookie, though it's not clear whether the move would do much to enhance privacy because the expiration date could get automatically extended when users revisit the search engine.


  • Secured-Core PCs Promise To Stop Malware at the Firmware Level

    Microsoft and its hardware partners recently described new "Secured-core" PCs, which add protections against firmware-based attacks.

  • How To Ransomware-Proof Your Backups: 4 Key Best Practices

    Backups are the only guaranteed way to save your data after a ransomware attack. Here's how to make sure your backup strategy has ransomware mitigation built right in.

  • Microsoft Buys Mover To Aid Microsoft 365 Shifts

    Microsoft announced on Monday that it bought Mover to help organizations migrate data and shift to using Microsoft 365 services.

  • Microsoft Explains Windows 7 Extended Security Updates Setup Process

    Microsoft this week described installation instructions for volume licensing users of Windows 7 Service Pack 1 to get Extended Security Updates (ESU) activated on PCs.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.