Privacy

First-party cookie recipes

Learn how to set first-party cookies to ensure security, cross-browser compatibility, and minimize chances of breakage once third-party cookies are phased out.

Migrate to User-Agent Client Hints

Strategies to migrate your site from relying on the user-agent string to the
new User-Agent Client Hints.

Schemeful Same-Site

The definition of "same-site" is evolving to include the URL scheme, so links between HTTP and HTTPS versions of a site now count as cross-site requests. Upgrade to HTTPS by default to avoid issues where possible or read on for details of what SameSite attribute values are needed.

Referer and Referrer-Policy best practices

Best practices to set your Referrer-Policy and use the referrer in incoming requests.

web.dev LIVE wrap-up

A summary of the major news and updates that were announced during our 3-day online community event, and a reminder about upcoming regional events.

Getting started with Trust Tokens

Trust Tokens is a new API to enable a website to convey a limited amount of information from one browsing context to another (for example, across sites) to help combat fraud, without passive tracking.

Digging into the Privacy Sandbox

The Privacy Sandbox is a series of proposals to satisfy third-party use cases without third-party cookies or other tracking mechanisms.

Fixing mixed content

What is mixed content?