Apple WebKit Team Publishes Website Tracking Prevention Policy - MacRumors
Skip to Content

Apple WebKit Team Publishes Website Tracking Prevention Policy

by

Apple's WebKit team has published a "WebKit Tracking Prevention Policy" that details a range of anti-tracking measures it has developed and the types of tracking practices it believes are harmful to users.

webkit logo
Inspired by Mozilla's anti-tracking policy, the document posted to the WebKit blog provides an insight into the anti-tracking features built into Apple's Safari browser that the team hopes to see in all browsers one day.

This document describes the web tracking practices that WebKit believes, as a matter of policy, should be prevented by default by web browsers. These practices are harmful to users because they infringe on a user's privacy without giving users the ability to identify, understand, consent to, or control them.

Apple introduced Intelligent Tracking Prevention in iOS 11 and in Safari 11 in macOS High Sierra 10.13 and has been working to develop ITP ever since. For example, in February Apple released iOS 12.2 and Safari 12.1 for macOS, both of which included ITP 2.1 featuring enhancements that block cross-site tracking.

The new WebKit policy highlights Apple's continuing efforts to target all forms of cross-site tracking behavior, even if it's in plain view.

WebKit will do its best to prevent all covert tracking, and all cross-site tracking (even when it’s not covert). These goals apply to all types of tracking listed above, as well as tracking techniques currently unknown to us.

If a particular tracking technique cannot be completely prevented without undue user harm, WebKit will limit the capability of using the technique. For example, limiting the time window for tracking or reducing the available bits of entropy — unique data points that may be used to identify a user or a user’s behavior.

In addition to cross-site tracking, the document outlines several other tracking practices it deems harmful to users, and says WebKit will treat circumvention of its anti-tracking measures "with the same seriousness as exploitation of security vulnerabilities."

If a party attempts to circumvent our tracking prevention methods, we may add additional restrictions without prior notice. These restrictions may apply universally; to algorithmically classified targets; or to specific parties engaging in circumvention.

For more on tracking definitions, the unintended impact of anti-tracking measures, and exceptions to the rules, check out the full WebKit Tracking Prevention Policy on the WebKit blog.

Top Rated Comments

90 months ago
The logical way to thwart tracking/spying is to cut off network communication to the servers that collect data. I've been using Little Snitch on MacOS for years to do so. It's amazing how many servers and domains a typical app or website connect to. Some are necessary for core functions but a large number are for activities by undisclosed associates with covert motives. Little Snitch lets me deny network connections selectively to background requests. I've amassed a blacklist that is in the hundreds.

I don't mind ads. They're a necessary nuisance to fund the web services and content that we won't directly compensate. Therefore, I allow those entities whose known purpose is ad serving. It's the unknown purpose(s) and reputations of other tracking entities that I choose to undermine.

I mention this tool because it—or anything like it—are sorely needed on iOS devices.

Disclaimer: I am not an employee or spokesperson for Little Snitch. My endorsement is my own.
Score: 3 Votes (Like | Disagree)
thisisnotmyname Avatar
90 months ago
Keep fighting the good fight Apple
Score: 3 Votes (Like | Disagree)
decafjava Avatar
90 months ago
I will forever think Facebook is listening.
The other day I was TALKING to my friend on the couch how I want to wait with buying plane tickets until my boss approves the holidays so I don’t end up spending money on a ticket I won’t be able to use and literally 30 minutes later I open Instagram I get an ad about „how do I get my money back for an unused plane ticket? Find out more“
Press icon til wobbly - delete.
Score: 3 Votes (Like | Disagree)
90 months ago
There's a content-blocker interface in iOS Safari, and a bunch of content blocker apps that use this, including some that will let you add arbitrary sites/IPs. You could port your blacklist into one of these, but it wouldn't be simple.
To be clear, I'm not seeking to block content. Ad blockers do that. I'm more interested in blocking covert background activities that hog resources and don't reveal their purpose.
Score: 1 Votes (Like | Disagree)
90 months ago

I mention this tool because it—or anything like it—are sorely needed on iOS devices.
https://www.macrumors.com/2019/07/24/lockdown-firewall-app-privacy-protection/
Score: 1 Votes (Like | Disagree)
Populus Avatar
90 months ago
Hey, I like that Safari icon better than the actual one.
Score: 1 Votes (Like | Disagree)

Popular Stories

safari notify macos 27

New Safari Can Monitor a Webpage and Notify You of Updates

Monday June 8, 2026 11:04 am PDT by
Apple's new version of Safari browser in macOS 27 and iOS 27 can be tasked to monitor a webpage and notify you of any changes, thanks to a new built-in feature. With "Notify Me," Safari can keep checking a website on your behalf – such as a product you've been watching for when it comes back in stock – and alert you when a change occurs. In other upcoming feature additions, using the ...
safari tab groups apple intelligence

Apple Brings AI Tab Organization and AI-Generated Extensions to Safari

Monday June 8, 2026 1:18 pm PDT by
Apple today unveiled a raft of Safari upgrades powered by Apple Intelligence, including automatic tab organization, AI-generated custom extensions, and new privacy-first browsing tools. The centerpiece feature is automatic tab organization, which uses Apple Intelligence to group a user's open tabs into relevant topics without any manual intervention. If someone is planning a weekend trip,...
apple safari privacy ad

Apple's New Ad Pitches Safari as a More Private Alternative to Chrome

Thursday June 4, 2026 4:24 am PDT by
Apple has published a new ad to appeal to customers who prioritize privacy when browsing, suggesting that Safari is the one you should use if you want to "Keep data trackers off your back." In a new Privacy on iPhone segment titled "Safari helps block data trackers," the ad shows users of rival phones in everyday situations having to live with data trackers as they browse. The trackers are...