The Cookie Monster.
We were at a meeting last week and a prospective client
asked about the EU Cookie Directive. We didn't
have a concise answer prepared and we deferred to the use of
cookies by the BBC and how they were informing users of cookie use
(other than in their privacy policy), and how they are not now!
Although we felt the meeting went well, our answer was a shambles
and if anything it has taught us to be better
prepared!
So what do you need to know?
The deadline for compliance is nearly here (26 May 2012) and
it is the law so keep reading.
How will the EU cookie directive effect my
website?
If you site uses cookies the legislation has been designed
to to increase data privacy and security for your users. You will
now need to tell users how you are using the cookies (information
it holds) and ask the user to 'opt in'.
What about compliance?
Anyone in the EU but also those whose websites target Member
States.
Why do I care?
Because it's the law! It may prove hard to enforce but with
a maximum penalty of £500,000 for non-compliance you need to think
again. You may however only receive an enforcement
notice!
What about my website?
There will be a requirement for some extra work on your
site, back-peddling on the good work you have already paid for in
creating a better user experience. Rachel
McCombie on her blog about the directive says
'webmasters will be allowed to use cookies without
permission in instances where it is strictly necessary
to do so for the functionality of the website and where that action
is explicitly requested by the user (i.e. where a
feature requested by the user wouldn't work without the use of a
cookie, such as the shopping basket on an e-commerce
site)'.
How do I comply with it?
You will need to be transparent about your use of cookies.
Prominent sign posting allowing users to give informed consent.
Remember, not all websites use cookies. Talk to your web developer
or ask grow to give your site a
free website check up.
So what do we think?
In many cases cookies collect anonymous information and do
not hold personal data. This we think is fine but cookie misuse can
be a pain and there is a probability that there will eventually be
an international standard to online privacy.
Analytics is a real issue for us as all our websites use
Google Analytics which sets cookies automatically. It is clear that
consent will be needed and we hope that Google will find a solution
in time, maybe asking users to update their privacy policy or for
browsers to include a universal consent or an opt-out
button.
We think that owners should get to know their website, know
what technology they have and then work with their developer to
implement a solution. If your developer is slow to react... give us
a call to find out how we can help. After all we are a website
design and development company based in Oxfordshire with an awesome
technical toolbox at our disposal!
If you are still in the dark there is plenty of reading to
be done in the PDF titled Changes to the rules on using
cookies and similar technologies for storing
information.
Also check out the Guardian
article from the 13th April.
