**FUCK OFF GOOGLE!1!!!1** @FuckOffGoogle@mastodon.social · Jun 01, 2018, 08:59

**FUCK OFF GOOGLE!1!!!1** @FuckOffGoogle@mastodon.social · Jun 01, 2018, 08:59

FUCK OFF GOOGLE!1!!!1 @FuckOffGoogle@mastodon.social

Developers, do not embed Google’s products on your sites & compromise the privacy of your visitors.

#CleanUpTheWeb & strip your site of tracking devices by Google, Facebook, etc. to make the web safer. Yes, that includes Google Fonts loaded from Google’s servers.

#ethicaldesign

(via https://twitter.com/aral/status/1002082046070665222)

#FuckOffGoogle @aral

**Ash** @quarktheawesome@i.write.codethat.sucks · Jun 02, 2018, 22:59

**Ash** @quarktheawesome@i.write.codethat.sucks · Jun 02, 2018, 22:59

@FuckOffGoogle @aral Google *fonts*? Can someone explain the problem there? There's not even any JavaScript involved...

**David Revoy** @davidrevoy@framapiaf.org · Jun 02, 2018, 23:53

**David Revoy** @davidrevoy@framapiaf.org · Jun 02, 2018, 23:53

@quarktheawesome @FuckOffGoogle @aral

Google font: they serve the font file to your visitors. It's a file transfert. So, they collect a log entry on their server with their IP/browser/where-they-came-from/etc... and because many dev use Google-font, they have a map of most of your visitors move accross the internet.

You can read my "second fight" on this article I published in 2016 : https://www.peppercarrot.com/en/article390/my-fight-against-cdn-libraries

**elomatreb** @elomatreb · 2018-06-04T10:44:58Z

elomatreb @elomatreb

@davidrevoy @quarktheawesome @FuckOffGoogle @aral This is also relevant wrt GDPR, as even the possible connection to the Google servers counts as sharing data with third parties (i.e. requires consent and all the usual stuff)

Jun 04, 2018, 10:44 · Web · 0 · 2

**Bart Groeneveld** @BartG95@mastodon.host · Jun 04, 2018, 11:14

**Bart Groeneveld** @BartG95@mastodon.host · Jun 04, 2018, 11:14

@elomatreb @davidrevoy @quarktheawesome @FuckOffGoogle @aral https://google-webfonts-helper.herokuapp.com/fonts

**Ash** @quarktheawesome@i.write.codethat.sucks · Jun 04, 2018, 11:38

**Ash** @quarktheawesome@i.write.codethat.sucks · Jun 04, 2018, 11:38

@elomatreb @davidrevoy @FuckOffGoogle @aral Huh, hadn't even thought of the GDPR aspect of it. Would you have to specify data-sharing with third parties, or is a simple resource request different? Does the Google privacy policy automatically apply?

**elomatreb** @elomatreb · Jun 04, 2018, 11:48

**elomatreb** @elomatreb · Jun 04, 2018, 11:48

@quarktheawesome It shouldn't be different, as an IP address is considered just another form of identifiable information.

Google's Privacy Policy applies if you consent, otherwise you'd have to sign a Processing Agreement Contract (?) with Google I think, which would detail the policy regarding your clients data

**Ash** @quarktheawesome@i.write.codethat.sucks · Jun 04, 2018, 11:52

**Ash** @quarktheawesome@i.write.codethat.sucks · Jun 04, 2018, 11:52

@elomatreb "if you consent" - you as in the webmaster or you as in the enduser?

**elomatreb** @elomatreb · Jun 04, 2018, 11:54

**elomatreb** @elomatreb · Jun 04, 2018, 11:54

@quarktheawesome The end user, the admin/server operator isn't the one who loses privacy here

**Ash** @quarktheawesome@i.write.codethat.sucks · Jun 04, 2018, 12:02

**Ash** @quarktheawesome@i.write.codethat.sucks · Jun 04, 2018, 12:02

@elomatreb Gotcha! Thanks for the info.

**elomatreb** @elomatreb · Jun 04, 2018, 12:03

**elomatreb** @elomatreb · Jun 04, 2018, 12:03

@quarktheawesome This is just the perspective of someone who runs a nonprofit forum website, not legal advice, yada yada