By the way, we also analyzed cookie consent implementations: In case of proper implementation websites must hold back cookies unless the visitor has agreed to their usage. In fact, we could only find a handful of cases where this was applied properly, e.g. mycams.com. Most of the websites analyzed did place cookies without waiting for user consent.
The adult industry is a peer in alternative tracking techniques. Ever since many porn site visitors are blocking cookies with the help of private browsing, which forces providers to use alternative approaches such as fingerprints. And as you can see in the above chart, this method is already widely spread. However, the European e-Privacy-Regulation, which is expected to come in force by 2020 or 2021, may change a lot. With this regulation in force, website providers must inform their visitors about any kind of user tracking, and visitors must give their consent in advance. We will see how the market reacts to that, what comes next...
While analyzing 3rd party requests, it is quite challenging to separate tracking requests from others. On the one hand, we still see space to improve our algorithms. But more than that we have difficulties to draw a proper line between safe and unsafe requests, especially when it comes to porn sites. We are currently strict in that regard because even a simple referrer or origin URL in the header is suitable for sharing sensitive information about visitors with 3rd parties. An analysis found out that more than 40% of the website urls provide details on the potential sexual orientation of their visitors (see chapter 5.3 of this paper). Moreover, for many of those requests, there is no valid reason to add referrer or origin information except user tracking and sloppy implementations. Thus, we think a conservative approach is appropriate, where any suspicious request is scored a bad request.