This was the point of App Tracking Transparency (ATT) on iOS. If an app embeds a third-party SDK that tracks you, such as the Facebook SDK, they are required to get your permission first with a system popup. They aren’t allowed to track you silently without your knowledge.
To be clear, ATT is the system Apple put in place for native apps that is enforced by the App Store review process. When it comes to the browser, I think you’re more interested in Intelligent Tracking Prevention (ITP).
You should check out WebKit‘s tracking prevention policy:
Yes, I am aware, that Apple is trying very hard to be the only one in ecosystem, that is tracking you where you cant do anything to avoid it due to completely closed phone.
With such a cure, you don't need disease.
That is why I was using heavily modified Android.
As I could prevent Android tracking me and kick the Google spyware out of it completely.
I am now using Sailfish ( https://sailfishos.org ) and I don't need to care about Google or Apple any more. Need to patch banking app from time to time and use plastic cards, but this is acceptable (well, not from bank software but I couldn't care less, they are free to port it to linux and make it open source /s ).
---
Anyway, the GDPR is requiring from applications to disclose tracking and allow you to chose what tracking if any, you will allow, before it occurs. Not only that, PIA cant be a payment for app usage.
So in theory, Apple is only enforcing what is already required from applications by EU directive.
