x404.co.uk
http://x404.co.uk/forum/

ICO: no fines for breaking cookie rules
http://x404.co.uk/forum/viewtopic.php?f=19&t=16445		 Page 1 of 1
Author:  paulzolo [ Fri May 18, 2012 12:33 pm ]
Post subject:  ICO: no fines for breaking cookie rules
Behold, another toothless law:
Quote:
[Deputy Commissioner Dave] Smith said fines were unlikely for cookies, as they wouldn't meet the requirements for being "substantially distressing" to individuals. "We do not rule that out but it's most unlikely that breaches of cookie requirements meet the requirement for monetary penalty," he said. "In the area of cookies, it's quite hard to satisfy the test for a fine."

http://www.pcpro.co.uk/news/374734/ico- ... okie-rules
Author:  tombolt [ Fri May 18, 2012 6:30 pm ]
Post subject:  ICO: no fines for breaking cookie rules
I figured it might end up like this.
Author:  MrStevenRogers [ Fri May 18, 2012 10:24 pm ]
Post subject:  Re: ICO: no fines for breaking cookie rules
that's why i use extensions such as 'cookie culler' and 'better privacy'

i will do the cookie culling myself ...
Author:  Linux_User [ Fri May 18, 2012 10:29 pm ]
Post subject:  Re: ICO: no fines for breaking cookie rules
There's nothing to stop an individual or other organisation from enforcing the rules through the civil courts.
Author:  paulzolo [ Fri May 18, 2012 11:08 pm ]
Post subject:  ICO: no fines for breaking cookie rules
It is a [LIFTED] mess though. Sure, for those who can, setting up a system to ask for remission is fairly simple enough, and as long as your site can function without access to cookies, then fine.

However, there are many sites asked on CMS like solutions - Joomla, ExpressionEngine, WebYep. All of these may drop cookies in one form or another. However, how would you convince the writers of these to comply with the rule? Some may not care, some may. Last time I looked, the Joomla forums had a thread about it with little conclusion, and certainly nothing from the development team.
Author:  finlay666 [ Fri May 18, 2012 11:42 pm ]
Post subject:  Re: ICO: no fines for breaking cookie rules
paulzolo wrote:
However, there are many sites asked on CMS like solutions - Joomla, ExpressionEngine, WebYep. All of these may drop cookies in one form or another. However, how would you convince the writers of these to comply with the rule? Some may not care, some may. Last time I looked, the Joomla forums had a thread about it with little conclusion, and certainly nothing from the development team.


Same with Google Analytics, but IIRC they were making a push to make an exception
Author:  paulzolo [ Sat May 19, 2012 10:00 am ]
Post subject:  Re: ICO: no fines for breaking cookie rules
finlay666 wrote:
paulzolo wrote:
However, there are many sites asked on CMS like solutions - Joomla, ExpressionEngine, WebYep. All of these may drop cookies in one form or another. However, how would you convince the writers of these to comply with the rule? Some may not care, some may. Last time I looked, the Joomla forums had a thread about it with little conclusion, and certainly nothing from the development team.


Same with Google Analytics, but IIRC they were making a push to make an exception


Google do offer a tool to block out their code if you want it. Whether pointing to that is enough to comply, or whether the site needs to specifically ask if Google Analytics cookies can be set is still being debated.

The problem is also compounded by all those Tweet/FaceBook/LInkedIn/Digg buttons which set cookies as well. Those buttons are generally iFrames which are written in by JavaScript. Obviously, to comply, those buttons would need to either not be shown or only be shown when someone agrees to cookies being set. For bonus points, you’d only do this if the IP Address of the visitor is from an EU country.
Author:  finlay666 [ Sat May 19, 2012 11:45 am ]
Post subject:  Re: ICO: no fines for breaking cookie rules
paulzolo wrote:
The problem is also compounded by all those Tweet/FaceBook/LInkedIn/Digg buttons which set cookies as well. Those buttons are generally iFrames which are written in by JavaScript. Obviously, to comply, those buttons would need to either not be shown or only be shown when someone agrees to cookies being set. For bonus points, you’d only do this if the IP Address of the visitor is from an EU country.

I know, done them for quite a few websites :), there are alternatives (twitter offer a push and facebook offers a push service which is different to the built in share methods) but AFAIK not all the 'social sharing' methods support this
Page 1 of 1 All times are UTC
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/