• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
Cookie Law – How to meet the deadline for compliance:  The Legal Context
 

Cookie Law – How to meet the deadline for compliance: The Legal Context

on

  • 3,144 views

James Milligan, Solicitor with the DMA, provides an overview of the legal context for webmasters seeking to comply with the new cookie law.

James Milligan, Solicitor with the DMA, provides an overview of the legal context for webmasters seeking to comply with the new cookie law.

©James Milligan, DMA 2012

Statistics

Views

Total Views
3,144
Views on SlideShare
1,650
Embed Views
1,494

Actions

Likes
0
Downloads
30
Comments
0

9 Embeds 1,494

http://www.civicuk.com 1002
http://civicuk.com 476
http://www.civiccomputing.com 4
http://civic.clients.civiccomputing.com 4
http://a0.twimg.com 3
http://www.civicuk.co.uk 2
http://paper.li 1
http://www.linkedin.com 1
http://civiccomputing.com 1
More...

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    Cookie Law – How to meet the deadline for compliance:  The Legal Context Cookie Law – How to meet the deadline for compliance: The Legal Context Presentation Transcript

    • Cookie Law – How to meet the deadline for compliance The Legal Context James Milligan DMA Solicitor CIVIC 18 January 2011
    • Outline 1) New cookie law 2) European Issues
    • New Cookie Law – Privacy and Electronic Communications (Amendment) Regulations 2011
    • New Cookie Law
      • What’s changed?
      • Strictly necessary exemption
      • When will new rules be enforced?
      • Is browser software the magic fix
      • Some outstanding issues
      • What should you be doing now?
      • How to obtain consent
      • Some examples of how to comply
      • Key compliance issues
      • ICO Half Term Report
      • Future developments
    • 1) What’s changed?
      • Consent on an opt-in basis to store, retrieve and use information on a users pc through cookies or gifs.
      • Consent – freely given specific and informed
      • Old rules - inform users and opt-out offered
    • 2) Strictly necessary exemption
      • Strictly necessary
      • Provision of a service
      • Provided at the request of the user
      • Users do not have to opt – in to use of cookies
      • Best practice - given information about use of cookies
      • Narrow interpretation
    • 3) When will new rules be enforced
      • ICO soft enforcement until May 2012
      • Websites deliberately misleading
      • ICO new enforcement powers
      • Post May 2012 ICO hard enforcement
      • Complaint driven action
      • Working towards compliance
    • 4) Is browser software the magic fix
      • Unlikely to issue new versions by May 2012
      • Problem of old versions still being used
      • Allow consumers to make decisions because of default settings before they reach your page
      • Can default settings be overridden on a case by case basis?
    • 5) Some outstanding issues
      • Third party cookies/online behavioural advertising
      • Self regulatory pan- European initiative
      • DMA involved in UK implementation
      • European data protection commissioners lukewarm
      • Mobile
    • 6) What should you be doing now?
      • Identify existing use of cookies
      • Identify different types of cookies used on your website and grade according to level of intrusiveness
      • Identify whether any might be strictly necessary
      • Work out a compliance plan – deal with intrusive ones first
      • Think about your options for gaining consent – effort / risk
      • Summary - audit, prioritise, review
    • 7) How to obtain consent
      • Amend your privacy policy/terms and conditions
      • Visually map customer journey through your website – look at touch points where you gain consent
      • Consider landing page where you get consent
      • Statement on email footers
      • Separate cookie policy
      • Make it easy for users to understand – DMA involved in ICC Common Language
    • 8) Some examples
      • ICO approach
    • 8) Some examples
      • 2) DCMS approach
      • http://www.culture.gov.uk/4902.aspx
      • Simple approach for Google analytics cookies
    • 9) Key Compliance Issues
      • Legislation is technologically neutral
      • Transparency and consumer education
      • Comply with the spirit of the legislation
      • Responsibility for compliance lies with organisation deploying cookies
    • 10) ICO Half Term Report Dec 2011
      • Could do better/Must try harder
      • Use existing methods for getting consent online
      • Quick wins
      • Cookie/Privacy policy - clear and visible
    • 10) ICO Half Term Report Dec 2011
      • Ideas – cookie management tools/
      • banners/buttons
      • ICO can’t endorse specific products/
      • services
      • Might not take you all the way to full compliance
      • Collaboration at industry and sector level
    • 10) ICO Half Term Report Dec 2011
      • Possible enforcement action
      • Is my website doing anything that my users don’t know about?
      • Am I confident that I am giving them appropriate options?
        • Not using cookies
        • Registered Users – what about others?
        • Consumer education
    • 11) Future developments
      • Remember compliance is on ongoing issue – cookies will be added and removed from your organisation’s website
      • May 2012 is fast approaching,
    • European Issues
    • European Issues
      • European Data Protection Directive Review
      • Cloud computing
      • Council of Europe Data Protection Convention Review
    • Thank you and Questions James Milligan DMA Solicitor The Direct Marketing Association (UK) Ltd Tel: 020 7291 3347 Email: [email_address] DMA Legal Advice Tel: 020 7291 3360 Email: [email_address]