Today I have implemented the necessary steps for integrating the Customer Privacy API on my Shopify site.
Enabled the Online Store → Preferences → Customer privacy → Limit tracking for customers in Europe checkbox & saved the change
Looking at the Storage → Cookies tab in a brand new private Firefox window’s developer tools before consent is given (using window.Shopify.customerPrivacy.setTrackingConsent(true, function() {}); ), a bunch of cookies still show. If I explicitly setTrackingConsent to false, then reload the page the same marketing/statistics cookies appear (which they shouldn’t).
I have labelled all the cookies my site is showing prior to consent below, I have included the labelled which Cookebot label them as, which weirdly are different to how Shopify labels them:
Shopify cookies
- _landing_page - marketing
- _orig_referrer - marketing
- _shopify_sa_p - marketing
- _shopify_sa_t - marketing
- _shopify_s - marketing according to cookiebot, but labelled as statistics (aka reporting & analytics) according to Shopify
- _shopify_y - marketing according to cookiebot, statistics (aka analytics) according to Shopify
- _s - marketing according to cookiebot, but labelled as statistics (aka analytics) according to Shopify
- _y - marketing according to cookiebot, statistics (aka analytics) according to Shopify
- _shopify_m - preferences
- _shopify_tm - preferences
- _shopify_tw - preferences
- _shopify_d - necessary according to cookiebot, but labelled as statistics (aka reporting & analytics) according to Shopify
- _tracking_consent - necessary
- cart_currency - necessary
- secure_customer_sig - necessary
- shopify_pay_redirect - necessary
Third party app cookies
- __kla_id - statistics - I presume a third party app klaviyo is responsible for this, how can I report this so it gets resolved?
Let me know if I have misunderstood how to prevent these unnecessary cookies from loading, or, whether this is a higher level issue that I cannot solve without Shopify’s intervention.