Attribution Reporting API
The Attribution Reporting API is a browser privacy API for measuring whether an ad click or view led to a later conversion without relying on third-party tracking cookies.
Definition
The Attribution Reporting API is a web-platform proposal for measuring ad conversions without using third-party cookies or cross-site persistent identifiers. The WICG overview says the API supports measurement of clicks and views with event-level and aggregate reports. MDN describes the API as a way to measure conversions, such as a user clicking an ad on one site and later buying on a vendor site, without relying on third-party tracking cookies.
The core social problem is ad measurement after tracking restrictions. Publishers, advertisers, and ad-tech providers want to know whether an ad impression or click contributed to a sale, sign-up, install, or other conversion. The browser mediates that link so the reporting path can be narrower than a cookie-based dossier. The API is not a full privacy settlement; it is a measurement channel with explicit limits, delay, noise, and aggregation design.
Attribution Reporting is not identity proofing, consent management, content licensing, bot detection, or proof that an ad caused a purchase. It records a bounded attribution relationship under browser rules. Governance claims should therefore distinguish measurement, causation, profiling, bidding, billing, and user consent.
Mechanism
The browser records two kinds of event. An attribution source is a click or view on the publisher side, registered when an eligible request receives an Attribution-Reporting-Register-Source response header. An attribution trigger is a later conversion on the advertiser side, registered through Attribution-Reporting-Register-Trigger. MDN also documents the Attribution-Reporting-Eligible request header, the attributionsrc attribute on links, images, and scripts, and the attributionReporting option for fetch() and Request().
If the browser matches a trigger with a stored source, it can send a report to a predefined endpoint. Event-level reports associate a particular ad-side event with coarse conversion data and are delayed and noised. Summary reports use aggregatable reports: Chrome's Privacy Sandbox documentation says the browser encrypts aggregatable reports, sends them to an ad-tech server, and the reports are processed by an aggregation service to produce summaries.
The browser policy surface is part of the mechanism. MDN documents the attribution-reporting Permissions Policy directive. Google Privacy Sandbox says cross-origin iframes that were not added by a script with top-level access need explicit permission, for example through allow="attribution-reporting", and that a site can disable the API with Permissions-Policy: attribution-reporting=().
Agent Context
For AI Browsers and Computer Use, attribution reporting matters because agents can change the meaning of clicks, views, and conversions. A human may ask an agent to compare products, open links, fill forms, or purchase a service. Those actions may generate source and trigger events even when the human did not personally attend to every ad or page transition.
Agentic browsers should keep advertising attribution separate from delegation. A conversion report is not evidence that the user endorsed the ad, consented to profiling, authorized cross-site measurement, or delegated purchase authority to an agent. Agent runtimes that operate in ad-funded environments should record when automated navigation may have contributed to attribution signals.
Governance Use
A serious deployment should record the publisher site, advertiser site, reporting origin, ad-tech provider, source event type, trigger event type, report type, retention rule, enrollment status, Permissions Policy state, and aggregation service path. It should also name the decision the report will influence: campaign analysis, conversion optimization, billing, fraud review, budget allocation, or internal experimentation.
The API belongs near Private State Tokens, Storage Access API, Real-Time Bidding, Data Minimization, and Surveillance Capitalism. Those pages answer adjacent questions about trust signals, embedded state, ad auctions, collection boundaries, and the business model that turns attention into measurement.
Limits
Attribution Reporting reduces some cross-site tracking channels but leaves governance questions. The WICG draft's privacy section says a primary goal is to make linking identity between different top-level sites difficult, but it also discusses remaining risks such as report delay, cross-network leakage, debug reports, and the limited capacity of event-level data. Aggregate reports can protect individual contributions with encryption and aggregation, but the resulting summaries still serve advertising optimization.
MDN says use requires Privacy Sandbox enrollment for deployed sites, with a Chrome developer flag available for local testing. Implementation claims should therefore name the browser, enrollment path, report type, delay model, and aggregation configuration. A report that is less identifying than third-party-cookie tracking is not automatically proportionate, accurate, or fair.
Review Record
- Parties: record publisher, advertiser, reporting origin, ad-tech provider, and aggregation service operator.
- Events: record source type, trigger type, registration headers, destination, expiry, priority, and deduplication policy.
- Reports: distinguish event-level reports, aggregatable reports, summary reports, debug reports, delay, noise, and retention.
- Agents: note whether a human, browser agent, crawler, testing tool, or embedded frame initiated the measured action.
Source Discipline
Claims about the API's goals, event-level reports, aggregate reports, and privacy risks should cite the WICG Attribution Reporting work. Claims about developer-facing headers, attributes, methods, and enrollment should cite MDN. Claims about Privacy Sandbox implementation framing, summary reports, aggregation service flow, and Permissions Policy examples should cite Google Privacy Sandbox. Do not use a marketing explainer as proof of privacy sufficiency or a browser draft as proof of real-world deployment.
Spiralist Reading
Spiralism reads the Attribution Reporting API as a lesson in measured attention. A less invasive measurement channel can still preserve the premise that every gesture should become evidence for optimization. The task is not only to reduce identifiers; it is to ask which measurements deserve to exist at all.
Related Pages
- Private Access Control Tokens
- Private State Tokens
- Storage Access API
- Permissions Policy
- Data Minimization
- Contextual Integrity
- Real-Time Bidding
- Surveillance Capitalism
- Recommender Systems
- AI Browsers and Computer Use
- Platform Governance
Sources
- WICG, Attribution Reporting, editor's draft, reviewed June 25, 2026.
- WICG GitHub, Attribution Reporting API overview, reviewed June 25, 2026.
- MDN Web Docs, Attribution Reporting API, implementation-oriented reference, reviewed June 25, 2026.
- Google Privacy Sandbox, Attribution Reporting for Web overview, reviewed June 25, 2026.