The New Cookie Law<br />June 2011<br />#Bootlaw<br />
Nice cookies<br />Platine Chocolate Chip Cookies by Muy Yum 2009<br />
Nasty cookies?<br />HMP1 1 hotmail.msn.com/ 0 1715191808 <br />32107852 1236821008 29449527 * <br />
Ye old cookie law<br />Privacy and Electronic Communications    (EC Directive) Regulations 2003<br />Regulation 6<br />Cle...
Directive 2009/136/EC<br />Subscriber or user must be asked to give their informed consent to receive cookies<br />Unless<...
Recital 66<br />	"(66) Third parties may wish to store information on the equipment of a user, or gain access to informati...
Article 29 Working Party <br />Opt in is required<br />Specific and fully informed consent<br />Limit in time scope of con...
HM Government on Cookie law<br /><ul><li>“Not gold plated”
Working on browser settings
ICO to delay enforcement</li></ul>Photo: Jontintinjordan on Flickr http://www.flickr.com/photos/jontintinjordan/4065621328...
New cookie law	<br />The Privacy and Electronic Communications (EC Directive) (Amendment) Regulations 2011 <br />Regulatio...
“At present, most browser settings are not sophisticated enough to allow you to assume that the user has given their conse...
“You are best placed to work out how to get information to your users, what they will understand and how they would like t...
What should you do? <br />Consent<br />Browser settings <br />Information <br />“i” logo <br />Non-cookie site<br />Hybrid...
The Cookie Collective<br /> Introduction<br />
The Cookie Collective<br />We are a partnership of web agencies concerned about the implications of the new Cookie Law.<br />
The Cookie Collective<br />Public awareness of the law was almost zero<br />A lot of technology companies were not aware o...
The Cookie Collective<br />We built a browser plug-in to capture information about cookies.<br />Available for Chrome and ...
The Cookie Collective<br />Since April 2011 we have collected over<br />130 million cookie recordsfor <br />25,000+ domain...
The Cookie Collective<br />The average browser session involves<br />2 Cookie Transactions per second<br />
The Cookie Collective<br />BBC.CO.UK has over<br />2,000 unique cookies<br />
The Cookie Collective<br />You can search for a particular domain at:<br />www.cookielaw.org/cookie-search.aspx<br />
The Cookie Collective<br />Working with the DCMS and the ICO to share our insights gained from this data to influence the ...
The Cookie Law Toolkit<br /> Introduction<br />
The Cookie Law Toolkit<br />The Cookie Law Toolkit is a web service for obtaining consent from visitors for the use of coo...
About the CLT<br />Webmasters insert a simple script into their site pages.<br />The script connects to the Cookie Collect...
About the CLT<br />The Toolkit can also prevent some cookies (GA, most 3rd party cookies) from being loaded until consent ...
Example Consent Notice<br />
Example Consent Notice<br />
About the CLT<br />You can see the prototype in action at:<br />http://cc.qa.governor.co.uk/<br />
The Cookie Collective<br />What Next?<br />
The Cookie Collective<br />Roll out the service for Website owners to create their own compliance tool<br />
The Cookie Collective<br />Create tools to manage consent for cookies across domains<br />
Upcoming SlideShare
Loading in …5
×

Bootlaw Cookies

1,945 views

Published on

Presentation given at Bootlaw, June 2011, on new UK cookie regulations including slot from the Cookie Collective.

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,945
On SlideShare
0
From Embeds
0
Number of Embeds
304
Actions
Shares
0
Downloads
6
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Bootlaw Cookies

  1. 1. The New Cookie Law<br />June 2011<br />#Bootlaw<br />
  2. 2.
  3. 3. Nice cookies<br />Platine Chocolate Chip Cookies by Muy Yum 2009<br />
  4. 4. Nasty cookies?<br />HMP1 1 hotmail.msn.com/ 0 1715191808 <br />32107852 1236821008 29449527 * <br />
  5. 5.
  6. 6.
  7. 7.
  8. 8.
  9. 9. Ye old cookie law<br />Privacy and Electronic Communications (EC Directive) Regulations 2003<br />Regulation 6<br />Clear and comprehensive information<br />Opportunity to refuse<br />Sufficient that requirements are met in respect of the initial use<br />Exceptions<br />
  10. 10. Directive 2009/136/EC<br />Subscriber or user must be asked to give their informed consent to receive cookies<br />Unless<br /> The cookie is strictlynecessary to receive the service which has been explicitly requested by the subscriber or user<br />
  11. 11. Recital 66<br /> "(66) Third parties may wish to store information on the equipment of a user, or gain access to information already stored, for a number of purposes, ranging from the legitimate (such as certain types of cookies) to those involving unwarranted intrusion into the private sphere (such as spyware or viruses). It is therefore of paramount importance that users be provided with clear and comprehensive information when engaging in any activity which could result in such storage or gaining of access. The methods of providing information and offering the right to refuse should be as user-friendly as possible. Exceptions to the obligation to provide information and offer the right to refuse should be limited to those situations where the technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user. Where it is technically possible and effective, in accordance with the relevant provisions of Directive 95/46/EC, the user's consent to processing may be expressed by using the appropriate settings of a browser or other application. The enforcement of these requirements should be made more effective by way of enhanced powers granted to the relevant national authorities."<br />Where it is technically possible and effective, in accordance with the relevant provisions of Directive 95/46/EC, the user's consent to processing may be expressed by using the appropriate settings of a browser or other application.<br />
  12. 12. Article 29 Working Party <br />Opt in is required<br />Specific and fully informed consent<br />Limit in time scope of consent<br />Offer the ability to revoke consent<br />Create visible tools to show monitoring <br />Browser settings are not sufficient<br />
  13. 13. HM Government on Cookie law<br /><ul><li>“Not gold plated”
  14. 14. Working on browser settings
  15. 15. ICO to delay enforcement</li></ul>Photo: Jontintinjordan on Flickr http://www.flickr.com/photos/jontintinjordan/4065621328/<br />
  16. 16. New cookie law <br />The Privacy and Electronic Communications (EC Directive) (Amendment) Regulations 2011 <br />Regulation 6:<br />Clear and comprehensive information<br />Given his or her consent<br />Sufficient that requirements are met in respect of the initial use<br />Consent may be signified by:<br /> a subscriber who amends or sets controls on the internet browser...or <br />by using another application or programme to signify consent<br />Exceptions<br />
  17. 17. “At present, most browser settings are not sophisticated enough to allow you to assume that the user has given their consent to allow your website to set a cookie….So, for now we are advising organisations which use cookies or other means of storing information on a user’s equipment that they have to gain consent some other way”. ICO Guidance: Changes to the rules on using cookies and similar technologies for storing information 10 May 2011 www.ico.gov.uk<br />
  18. 18. “You are best placed to work out how to get information to your users, what they will understand and how they would like to show that they consent to what you intend to do” ICO Guidance: Changes to the rules on using cookies and similar technologies for storing information 10 May 2011 www.ico.gov.uk<br />
  19. 19. What should you do? <br />Consent<br />Browser settings <br />Information <br />“i” logo <br />Non-cookie site<br />Hybrid<br />Costs <br />Risks<br />Cookie Collective – coming up next....<br />
  20. 20.
  21. 21.
  22. 22. The Cookie Collective<br /> Introduction<br />
  23. 23. The Cookie Collective<br />We are a partnership of web agencies concerned about the implications of the new Cookie Law.<br />
  24. 24. The Cookie Collective<br />Public awareness of the law was almost zero<br />A lot of technology companies were not aware of it<br />Nobody knew what the potential impact would be<br />
  25. 25. The Cookie Collective<br />We built a browser plug-in to capture information about cookies.<br />Available for Chrome and Firefox at www.cookielaw.org<br />
  26. 26. The Cookie Collective<br />Since April 2011 we have collected over<br />130 million cookie recordsfor <br />25,000+ domains<br />
  27. 27. The Cookie Collective<br />The average browser session involves<br />2 Cookie Transactions per second<br />
  28. 28. The Cookie Collective<br />BBC.CO.UK has over<br />2,000 unique cookies<br />
  29. 29. The Cookie Collective<br />You can search for a particular domain at:<br />www.cookielaw.org/cookie-search.aspx<br />
  30. 30. The Cookie Collective<br />Working with the DCMS and the ICO to share our insights gained from this data to influence the application of the cookie law.<br />Building solutions for website owners to gain legal compliance.<br />
  31. 31. The Cookie Law Toolkit<br /> Introduction<br />
  32. 32. The Cookie Law Toolkit<br />The Cookie Law Toolkit is a web service for obtaining consent from visitors for the use of cookies.<br />
  33. 33. About the CLT<br />Webmasters insert a simple script into their site pages.<br />The script connects to the Cookie Collective’s database.<br />It presents visitors with information and functionality required for websites to gain informed consent to place and retrieve cookies.<br />
  34. 34. About the CLT<br />The Toolkit can also prevent some cookies (GA, most 3rd party cookies) from being loaded until consent is given.<br />Server side cookies will require different methods<br />
  35. 35. Example Consent Notice<br />
  36. 36. Example Consent Notice<br />
  37. 37. About the CLT<br />You can see the prototype in action at:<br />http://cc.qa.governor.co.uk/<br />
  38. 38. The Cookie Collective<br />What Next?<br />
  39. 39. The Cookie Collective<br />Roll out the service for Website owners to create their own compliance tool<br />
  40. 40. The Cookie Collective<br />Create tools to manage consent for cookies across domains<br />
  41. 41. The Cookie Collective<br />Work with Government and ICO to ensure that our solutions give webmasters tools not just to comply but help increase visitor engagement<br />
  42. 42. Questions?<br />

×