Google Privacy Sandbox Related Website Sets API - winner or not?
September 11, 2023
September 11, 2023
The industry has been keeping a keen eye on the development of Google Privacy Sandbox. Recently, the “First-Party Sets” API (since renamed to “Related Website Sets”) was brought out of its Origin Trial and shipped to Chrome v115. Related Website Sets is now enabled for 10% of Chrome users and will be enabled by default for 100% of Chrome users soon. It will be ramped up to 35%, then 60%, and finally 99% by Chrome v117. Google has also confirmed that the deprecation of 3rd party cookies will start from 1st January 2024, with it disabled for 1% of the global Chrome user base, with Google progressing from there as they see fit.
AdFixus was recently invited to attend a session alongside local industry leaders at the Google offices in Sydney led by their privacy team and Related Website Sets product team. In this article, we explore the Privacy Sandbox APIs, the Related Website Sets API, and perspectives on what these forthcoming changes mean for the industry and how organisations should look to respond to this.
Privacy Sandbox is an initiative led by Google to create a set of technologies across Chrome and Android in response to the industry-wide deprecation of 3rd party cookies and similar invasive technologies.
Google has developed and tested a number of proposed technology solutions over the last few years in collaboration with the industry (including AdTech/MarTech vendors, Chromium, W3C TAG, industry bodies and test partners). A full list of the proposed APIs can be found at the bottom of this page.
The Related Website Sets (“RWS”) API is a web-only Privacy Sandbox API developed so that: “browsers are allowed limited access to third-party cookies across multiple sites by allowing companies to declare relationships among their owned sites”.
In the simplest terms: In a world where Chrome 3rd Party Cookies are fully deprecated, it will not be possible for sites with different domains to allow cross-site cookie access. The Related Website Sets API provides a solution to this by allowing these different domain name sites to declare a relationship with each other for the purpose of allowing cross-site cookie access.
RWS allows for three use-case “categories” where a company owning different domains are allowed to define a valid “relationship”:
A company named “Brand X” may be able to define the following relationships for their owned domains:
Challenges in the approach are immediately apparent, such as:
As such, organisations should not seek to adopt RWS as a “silver bullet” solution to 3rd party cookie deprecation and usage for advertising, measurement, and user identification.
It is important to note that RWS and Privacy Sandbox APIs are ultimately still a “Google approach to solving part of the 3PC deprecation and privacy” imperative. It is not one that is a “privacy-legislation” based approach to operating in a privacy-first internet without 3rd party cookies.
AdFixus customers are adopting the Related Websites API by first evaluating a comprehensive strategy that supports their entire customer ecosystem. The AdFixus solution is a critical piece of infrastructure for our customers to execute a 1st party strategy that is:
The Related Websites API is narrowly scoped to solve a limited range of use-cases impacted by the deprecation of 3rd party cookies. Google Privacy Sandbox does introduce a number of APIs which together cover the broader scope of use-cases that organisations are seeking to resolve. However, this is still a Google-only solution and does not encompass the entire web (approximately 30-50% of your traffic). Major browsers have not yet agreed to a set of solutions which will be uniformly supported posing significant risk to reliance on any one set of solutions.
Whilst there is value in testing new solutions such as RWS -
It is important to not rely solely upon these and instead to adopt a comprehensive approach. Organisations should seek to employ solutions that are future-proofed against ongoing privacy changes, supported across all browsers, and can be fully owned and activated by themselves.
The table below summarises all the proposed Google Privacy Sandbox APIs – covering a range of use-cases not limited to only advertising use-cases. Read more here.