Yahoo developer network
Data X
Yahoo developer network logo
  • Open Source
  • APIs
  • Advertising
  • Blog
  • Events
  • Podcasts
  • Apps
  • Data X
  • Documentation
    • Overview
      • Introduction & Scope
      • High-Level API Flow
      • Terminology
      • Taxonomy
      • User/Audience Data
    • Metadata
    • Taxonomy
      • Metadata
      • Taxonomy Representation
      • POST /Upload New Taxonomy
      • PUT /Append Taxonomy Node
      • PUT /Replace Taxonomy Node
      • PUT /Move Node
      • Delete Taxonomy Node
      • Get Taxonomy
      • Error Codes
    • User/Audience Data
      • Overview
      • Metadata
      • Formatting Rules
      • POST /AUDIENCE
      • POST /AUDIENCE/SEGMENT/{ID}
      • POST /AUDIENCE/ATTRIBUTE/{ID}
      • POST /AUDIENCE/OPT-OUT
      • GET /AUDIENCE
      • Error Codes
    • Security/Authentication
    • Sandbox Environment and Onboarding
    • Real-Time API
      • Terminology
      • Oauth 2.0 Authentication
      • User and Audience Data
      • Rate Limits
      • GDPR
    • Partner Match API
      • Security/Authentication
      • Partner Match API
      • DataX Formats, Schemas, Identifiers & Limits
      • Match Rates
      • Data Opt-Out
    • Rate Limits
    • Best Practices
    • GDPR
      • Taxonomy
      • Audience
      • Cookie Mapping
      • FAQ
    • Appendix A - Sample Taxonomy
  • Sign In
  • Language:
    • English (U.S.)
    • 中文(香港)
    • 中文(台灣)

Cookie Mapping¶

For GDPR compliance purposes, Yahoo is adding new parameters to its UPS cookie sync pixel for our providers to share data-consent from EU users. See below for instructions on how to implement these new parameters.

The new parameters are gdpr and gdpr_euconsent. Note that it is the publisher’s responsibility to acquire the consent information and pass it to Yahoo via these parameters.

Parameter Names¶

  • gdpr - use this to pass EU user consent:

    • true - Europe audience data. Data provider indicates that the data is subject to GDPR regulations.

    • false - Rest of the world. Data provider indicates that the data is not subject to GDPR regulations.

    • empty - DataX will handle the jurisdiction flag as true and process the data applying GDPR regulations.

  • gdpr_euconsent - use this to include user consent attributes (using IAB Purpose bit descriptions):

    • Storage and Access of Information - the storage of information, or access to information that is already stored, on user device such as accessing advertising identifiers and/or other device identifiers, and/or using cookies or similar technologies.

    • Personalization - the collection and processing of information about user of a site to subsequently personalise advertising for them in other contexts, i.e., on other sites or apps, over time. Typically, the content of the site or app is used to make inferences about user interests, which inform future selections.

Notes¶

  • The gdpr value must be included (true or false) at the time of the pixel fire.

    • false - data provider indicates that the data is not subject to GDPR regulations.

    • true - data provider indicates that the data is subject to GDPR regulations.

    • empty - UPS cookie sync pixel will decide the user’s jurisdiction based on the user’s IP address and stored profile.

  • gdpr_euconsent GDPR user-consent string. Required if the gdpr parameter is set to 1 or true.

  • Parameter values are case-insensitive.

  • If gdpr and gdpr_euconsent parameters ARE NOT included as part of the UPS cookie sync pixel.

    • Yahoo will look at the user’s IP address and store the profile to retrieve jurisdiction and consent status.

    • Yahoo will drop all EU-based identified users and process all others.

UPS Cookie Sync¶

The Yahoo UPS cookie sync enables data partners to initiate a cookie sync and receive a unique encrypted Yahoo cookie ID (AXID). This encrypted ID will then be used to post cookie data via Yahoo’s DataX API.

Partner requirements:

  • Yahoo developer APP ID.

  • Preferred endpoint for Yahoo to use as the redirect described below.

  • Expose Yahoo’s cookie sync to high volumes of your traffic for at least 3-4 weeks prior to integration completion.

Important

Yahoo recommends that the pixel is fired for each user every 14 days.

Workflow¶

The workflow is illustrated in the mapping table shown below:

partner stores mapping table

The sequence is as follows:

  1. A web browser visits the site with a Yahoo cookie sync. The web browser requests a cookie sync pixel.

  2. The Yahoo UPS server responds with a redirect to partner cookie sync. The Yahoo cookie id (AXID) is appended to the partner url (for example. user_id=123).

  3. A web browser requests the partner cookie sync. The partner pixel server records the mapping between the Yahoo id / partner id and responds.

Optional Workflow¶

As an alternative to the workflow described above, the Yahoo cookie sync can also be configured to store the mapping table on the Yahoo side, as illustrated in the mapping table shown below:

yahoo stores mapping table

The optional sequence is as follows:

  1. A web browser visits the site with a Yahoo cookie sync. The web browser requests a cookie sync pixel with the partner cookie id appended to the url (for example, _hosted_id=abc).

  2. Yahoo stores the mapping between the Yahoo id / partner on receipt of the request. In return, the Yahoo UPS server response can be configured to either:

  • Respond with a redirect to the partner cookie sync and the Yahoo cookie id (AXID) is appended to the partner url (for example, user_id=123).

  • Alternatively, the Yahoo UPS server can perform a 204 (success, no content) instead of a 302 with AXID. This saves an additional redirect/request if the partner has no use for it.

  1. (optional): The web browser requests the partner cookie sync.

Pixel¶

The following table describes the pixel parameters for the Yahoo UPS cookie sync pixel. Note that GDPR flags are required.

Pixel URL:

https://ups.analytics.yahoo.com/ups/####/cms?partner_id=******&gdpr=1&gdpr_consent=....[&_hosted_id={user_id}]
Table 1 Pixel Parameters¶

Parameter

Description

/ups/####/cms (Required)

#### is a numeric id that denotes the pixel id.

partner_id=****** (Required)

Each endpoint contains an alphanumeric key (the example ****** is used here) that uniquely identifies the partner.

gdpr (Required)

Indicates if the user is from a gdpr-regulated region or not. Accepted values are 1 or 0, or true or false.

gdpr_consent (Required)

GDPR user consent string. Required if the gdpr parameter set to 1 or true.

_hosted_id (for optional workflow only)

Partner’s user identifier.

gpp

The Global Privacy Platform (GPP) consent string. For example: gpp=DBACNYA~CPXxRfAPXxRfAAfKABENB-CgAAAAAAAAAAYgAAAAAAAA~1YNNgpp.

gpp_sid

An optional 1 digit index into the gpp string, if the consent string contains more than 1 jurisdiction consent.

Response¶

The Yahoo cookie sync pixel will perform a 302 redirect to the configured partner endpoint.

An example redirect URL: Redirect:

https://pixel.partner.com/partner/pixel?user_id=####&gdpr=1&gdpr_consent=....
Table 2 Response Parameters¶

Parameter

Description

user_id

The Yahoo cookie id (AXID). You can configure the name of this parameter. For example, Yahoo Cookie ID (AXID): y-IQL5XeRE2pTnnQ2ucKxA5m3ObIil3SM08A--~A.

gdpr and gdpr_consent

GDPR parameters will be appended in the same format described above.

gpp and gpp_sid

Global Privacy Platform (GPP) parameters will be appended in the same format described above.

Parameter forwarding

The Yahoo cookie sync can be configured to forward parameters. That means, their values can be passed into the Yahoo cookie sync to the redirect pixel. You need to provide a list of the parameters you would like forwarded.
Support
Terms and Privacy Policy
Your Privacy Choices
About Us Jobs Developer Privacy Developer Terms Developer Policies Site Feedback
Brands Yahoo Developer Analytics Reporting Yahoo Edgecast Developer Ad Platform Help Center
Group 5 Group 7 Group 4 Group 3 Group 14
Yahoo Logo