I'd love to see a detailed analysis / reverse engineering that targets how 'legitimate interest' settings really works in these forms. This form in particular pre-selects all 'legitimate interest' switches and requires me to click them all, one by one. Does it really change anything? What does it change? What if I left them selected?
A quick look at their privacy policy [1] brings up:
> Forbes may also process certain user information on the basis of the following legitimate interests, provided that such interests are not overridden by your privacy rights and interests: delivering and continuing to develop and improve the Site, learning from your behavior on the Site (e.g., analyzing traffic) to better serve you and other Site users, helping us modify or enhance the Site and its content, receiving insight as to what users do (and don’t) like about our Site or aspects thereof, and providing a stable, consistent, and secure user experience in connection with the Site.
I understood this as 'unless your privacy rights and interests prohibit us, we'll process your data' (TINLA). Still, would be nice to know how do they check for an individual's privacy rights.
Yeah, it's a dark pattern, illegal under the GDPR, and I'd love to see a prosecution under it. It's making the entire consent form a farce, because they do not obey the "No, I do not give consent". You actually have to go through and say "Not only do I not give consent, but I also object to you doing it against my consent".
A quick look at their privacy policy [1] brings up:
> Forbes may also process certain user information on the basis of the following legitimate interests, provided that such interests are not overridden by your privacy rights and interests: delivering and continuing to develop and improve the Site, learning from your behavior on the Site (e.g., analyzing traffic) to better serve you and other Site users, helping us modify or enhance the Site and its content, receiving insight as to what users do (and don’t) like about our Site or aspects thereof, and providing a stable, consistent, and secure user experience in connection with the Site.
I understood this as 'unless your privacy rights and interests prohibit us, we'll process your data' (TINLA). Still, would be nice to know how do they check for an individual's privacy rights.
[1]: https://www.forbes.com/privacy/english/#d91194a30610