Jump to content



Photo

Cookie disclaimer or not?


  • Please log in to reply
9 replies to this topic

#1 dkz

dkz

    Hmm....

  • 44 posts
  • Joined: 21-July 02

Posted 23 July 2014 - 12:44

Okay, I have a personal website where a few IRL friends have a login for. If I want to make a function that remembered their login for like 2 weeks with the help of a cookie, So do I need to have that EU cookie/privacy disclaimer thingy? And if I have to, is it enough to get verbal consent from the friends beforehand and forego the written disclaimer on the website login form?

 

Been reading up on the EU cookie/privacy law and can't seem to make heads or tails of it.




#2 Cnónna

Cnónna

    Neowinian

  • 65 posts
  • Joined: 27-December 13

Posted 23 July 2014 - 12:52

wouldn't think the EU's gona come hunting you down if your just a small private site, someone would probably need to report you to them at the very least. Right!!

 

 

 

 

 

 

mind you it is the EU and they love those rules and regulations :s :argh:



#3 +Majesticmerc

Majesticmerc

    Resident Idealist

  • 6,135 posts
  • Joined: 24-August 05
  • Location: United Kingdom
  • OS: Arch Linux / Win 7
  • Phone: HTC One X

Posted 23 July 2014 - 13:00

You do need to ask for consent for a "remember me" cookie unfortunately because it's a persistent cookie (i.e. it outlives the session).

#4 OP dkz

dkz

    Hmm....

  • 44 posts
  • Joined: 21-July 02

Posted 23 July 2014 - 18:11

okay, found this: http://www.theregist...ies_are_exempt/.

 

As I read it, it should mean that the remember me function which can't be provided without a cookie and which the user has asked by checking the remember me box, is a 'strictly necessary' for the operation of the site thing, so I don't have to show the cookie disclaimer.

 

Or maybe I'm wrong, but thanks for the answers.



#5 +Majesticmerc

Majesticmerc

    Resident Idealist

  • 6,135 posts
  • Joined: 24-August 05
  • Location: United Kingdom
  • OS: Arch Linux / Win 7
  • Phone: HTC One X

Posted 25 July 2014 - 09:53

The key phrase is "necessary for the operation of the site". This is stuff like cookies for maintaining the content's of your shopping basket on Amazon, or a session ID stored on a website to identify you on your online banking page. A "Remember me" button isn't essential to the functioning of the site (user's can still use the site fine without the "Remember me" functionality), so you should put up the notice.

 

However, I don't think a massive popup would be necessary just for that. A line of text next to the "[x] remember me"  button just saying "(This functionality requires that a cookie be stored on your PC)" would probably satisfy as implied consent.



#6 Steven P.

Steven P.

    aka Neobond

  • 30,910 posts
  • Joined: 09-July 01
  • Location: Neowin HQ

Posted 25 July 2014 - 10:03

Most annoying thing about the Internet :| it's because certain websites drop tracking cookies which have nothing to do with logging in that the disclaimer is required.



#7 +MikeChipshop

MikeChipshop

    Miniman

  • 6,963 posts
  • Joined: 02-October 06
  • Location: Scotland
  • OS: Windows 8, iOS, Android, WP8
  • Phone: HTC 8X / Nexus 5

Posted 25 July 2014 - 10:20

Not. The law never made it to fruition and it is not required.



#8 HawkMan

HawkMan

    Neowinian Senior

  • 21,705 posts
  • Joined: 31-August 04
  • Location: Norway
  • Phone: Noka Lumia 1020

Posted 25 July 2014 - 10:22

having to click away the cookie warning overlays on sites is really annoying :)



#9 Sparky Marky

Sparky Marky

    Neowinian

  • 80 posts
  • Joined: 19-April 05

Posted 25 July 2014 - 10:53

There is 'implied consent', so as long as you have a link somewhere (footer as an example) with cookie policy which links to some blurb about cookies and how they can turn them off you're covered.



#10 Hum

Hum

    totally wAcKed

  • 62,887 posts
  • Joined: 05-October 03
  • Location: Odder Space
  • OS: Windows XP, 7

Posted 01 August 2014 - 21:52

Most annoying thing about the Internet :| it's because certain websites drop tracking cookies which have nothing to do with logging in that the disclaimer is required.


Firefox has a setting to tell websites not to track you.

Don't know if it really works.