Where to get vendorDeleteScriptSources (ddr.js Url's)

[rlankhorst]

In the docs it is stated that a publisher should add a vendorDeleteScript for each vendor:

// Add all Vendor scripts; this is just an array of string sources
vendorDeleteScriptSources.forEach((vendorDeleteScriptSource) => {

However, in the lspa.json there are only opt out URL's, no vendorDeleteSource that ends on ddr.js, as in the example.

I've also tried each domain, with ddr.js, or privacy/ddr.js. But the ones I tried do not have this file there. Where can we find a list of ddr.js sources to implement this?

[alextcone]

Hi @rlankhorst. There is not currently a programmatic way to determine a vendor's ddr.js file location. @wittjill and I at IAB Tech Lab have discussed updating the Data Deletion Request specification to indicate that the file should be hosted in a well-known location (or at a redirect from a well-known location). This change is in not in progress, but it would help to know whether you would be supportive.

[rlankhorst]

As building a ddr.js list manually is not feasible for us as cmp, it needs to be programmatic to be of use I think.

A default location like /privacy/ddr.js would work fine, but a vendorlist.json would also work.

We're certainly supporting such an addition :)