Hi @itsmetechy
it depends, with the classic AppMeasurement library, you can set the cookieLifeTime to "session" which essentially places a non-persistent cookie that is removed when the session ends and per se (double-check with legal) may be legal according to GDPR.
In my opinion, a cookie is a cookie, and it does not matter how long it is persisted. But some argue that if it is only accessible during the same session, a cookie consent is not needed. So you better want to talk to your legal department to get their take on this.
This feature, however, is no longer possible with Web SDK where a cookie is persisted for longer than the session duration.
But (or rather BUT), and this is my personal opinion, I would not try to track the user until consent is given. Yes, you won't be able to track the user, but to me it always feels dodgy if a website is asking me whether they may track me and at the same time I see all kinds of tracking pixels fired in Omnibug.
I typically urge my clients to respect the users and accept analytics data as what it is: trends on the website and not exact numbers which can be affected by ad blockers, browsers, etc. If you want absolute page views, look into server logs.
@jennifer_dungan your two cents on this?
