New cookie law in UK?

[DavyAndDavy]

Indeed it isn't clear. But, expert or otherwise, you should read the ICO guidance. It's not really a legal document but is written for website owners such as yourself. In it you'll find that your "If they look for it they will find it" method is a definite no-no. By all means add something to the privacy policy but the guidance suggests that the link to it should be prominent.

[webmonkey]

Quote:

Originally Posted by bikeman

...as I feared its not exactly clear.

The reason it's not clear is that whilst the aim of the legislation had some merit, the jobsworths who thought it up over their skinny lattes had, and have, no idea how the web works, and gave no thought to its implementation.

Hence, the silly twits are now left scratching their collective posteriors in total confusion, hoping that someone, somewhere will sort out the mess their ineptitude has created.

As webmasters, we have two choices.
1. Try to implement the legislation.
2. Ignore it.

From what I see 99% of webmasters have chosen to ignore it.

Those who have attempted to implement it have understandly done so badly (as Davy points out in the "compliance problems" highlighted his posts).

What would you think of a shop where some security guy snaps an enormous electronic tag on your wrist before you have even seen the goods and then asks if you would mind being "monitored for training and analytical purposes"? I think you might very well tell him (and the shop) where they could stick it!

[rotarysteve]

The really sad deal here is that each country of the EU may have their own twist to this. After following this thread only have heard comments from 3 member states.

[DavyAndDavy]

Webmonkey, I think you do some of those concerned an injustice by grouping them all together as silly twits.

While I've not dug into the debate that went on during the draftings, I do agree that those behind the original EU Directive have no idea of how the WWW works and they attacked a simple tool of the trade used for many purpose to crack what they think is a problem. Your security tag analogy is good when it comes to analytics but the cookie is used for many, many, non controversial purposes. The humble Session ID cookie used by PHP and ASP can be, and is, used to "hold the pages together" as the user browses the website, a function that the HTTP protocol simply doesn't have on its own.

When it comes to passing the member state legislation, the UK, for example, has taken the easy route and has used the Directive almost word for word. So in some respect you could classify the UK legislators with the silly twits but, in truth, I'm not sure if they had any option.

However, it seems to me that the UK ICO, which has the responsibility of initially interpreting and enforcing the legislation that it has been handed, has not taken the easy route but has instead tried to come up with different interpretations of the Regulatory words and even rules for prosecution to try to make it easier for website owners. Unfortunately much of this comes across as a debate rather than a solution and the 11th hour change of rule in the version 3 guidance, which they say is not a change, has not helped. But I think it's unfair to class the ICO with the silly twits when it is potentially sticking out its neck in giving websites a bit of leeway and risking future EU challenges.

[ldofout]

Forgive my ignorance on these matters, but I have been reading alot of discussions about the EU cookie etc. and whilst I understand what is going on I have yet to find a site or discussion that has come up with a clear and concise answer. So having looked on Statcounter I find a page that shows me what the BBC and BT are doing, and a link to page that gives visitors a chance to opt or find more info., great this has been the most constructive information so far.
I just want to make sure that I have the possible solution clear in my head. I can use the same or similar wording to those shown on the page and I can use the link to the Statcounter opt out page etc for my visitors who wish to opt out?
If this is the case is there an address that will take them straight to the page because all I can see is a "this page" link on the knowledge base page.

[Arne]

Quote:

Originally Posted by ldofout

If this is the case is there an address that will take them straight to the page because all I can see is a "this page" link on the knowledge base page.

And you didn't notice what page that link takes you to?
Copy the links url and paste it on your page, that will take them straight to the page.

[ldofout]

Thank you for your reply (even if it was rather patronising).

[kristell]

I have found a really simple script to modify and use from here http://www.openglobal.co.uk/articles...directive.html


Whether it is fully compliant or not - at least I have found a really simple script to add to my site (every page). At least I have tried - something must be better than nothing.

I am not a techie or professional web developer so many of the scripts and instructions I came across totally baffled me. This one worked first time with the only editing being to add the url of my privacy policy.

[tom paine]

It's an unobtrusive answer to a silly law. I can't see this law being enforced so this is probably as good as anything else

[webmonkey]

Quote:

Originally Posted by tom paine

It's an unobtrusive answer to a silly law.

I agree, although it does add quite a chunk of js to a page - all to satisfy perhaps the most risible and pointless legislation ever to come from the jobsworths in euroland.

I take my hat off to the folks at Openglobal though for explaining the ins and outs of the legislation so succinctly and clearly. I especially enjoyed:

"The problem now is that politicians have become involved that partially understand the privacy implications of cookies and totally misunderstand the technology and usability implications."

Couldn't have said it better myself!