Eu Cookie Law Implementation Examples

[Rooftop]

Thought it might be useful to post any interesting implementations that people spot as they have started appearing more frequently over the last few days:

I thought that the example on mydonate was quite good. If they got the copy right it could even be quite a positive thing:
http://bit.ly/LnFVJf

[Torben]

The EU cookie directive has been implemented in Danish law for about six months now but I haven't seen anything like your example. Actually you can get away with having a policy that explains what is tracked and how you remove the cookies. As an example this newspaper (http://www.b.dk/) has a small blue icon in the top right corner that links to a policy.

No doubt it's a loose implementation of the EU directive but most EU countries haven't got a cookie law in place yet so I think we can get a way with it for a long time.

[Rooftop]

In the UK the ICO (poor saps lumbered with enforcing it) have said that informing is not enough and that explicit consent must be obtained. 

I quite liked the mydonate example as it could be used to frame the decision in terms of 'how much functionality are you willing to sacrifice?'

[Gurtie]

www.bt.com is interesting, it's being lauded by the ICC (not ICO, but they have commented in places its mentoned without pointing out the flaws) as a good example of best practice, but checkout the slider and its blatantly not compliant.

But, er, its not compliant in the way that you need - and its being quoted as best practice, so, er.......

also optanon http://www.cookielaw.org/optanon.aspx

which I still don't think is compliant, but is getting a lot of use.

[Rooftop]

I'd live to see what % of users agree based on some of these.  I couldn't even see the optanon on as I tend to hit the housewheel and scroll down long pages as a habit.  Wouldn't have seen it if I hadn't been looking.

[4Eyes]

Almost everything I have seen so far is a conversion killer, and I can't see most smaller businesses complying until:

* the majority of their competition are seen to be complying.
and/or
* there are a rash of high profile legal cases.


It will be interesting to see how the industry evolves to work around this idiocy.

[Gurtie]

we've seen a report which shows a 95% drop off in acceptance of analytics cookies. The ICO had a 90% drop off when they tried it - the stats were made public.

econsultancy.com/uk/blog/9947-eu-cookie-law-ico-to-contact-50-uk-websites-about-compliance

[Rooftop]

Ouch. That puts (not provided) in to perspective doesn't it?

[thesaintv12]

The BBC report that the majority of UK Government sites will fail to comply too - http://www.bbc.co.uk/news/technology-18090118

[Adam C]

...I can't see most smaller businesses complying until:

* the majority of their competition are seen to be complying.
and/or
* there are a rash of high profile legal cases.

anyone remember back in 2004 when the DDA came into UK law and was set to change web accessibility?  Loads of hoo-har in advance, then from memory almost nothing happened.

[Rooftop]

Ugh - yes.  All the cowboys selling Bobby reports for £200.
Actually, I'm surprised that there have not been lots of people selling cookie audits. 

[Adam C]

http://econsultancy.com/uk/blog/9966-the-mirror-s-response-to-eu-cookie-law-compliance

[Rooftop]

That's an interesting take. Closing the window being the sign of consent.  Would certainly improve opt-in rates.

[Rooftop]

BBC is interesting. They seem to be ignoring what hte ICO said about a positive opt in.

[thesaintv12]

I see the BBC have just started displaying their notice at the top of the page  - http://www.bbc.co.uk/news/

They have gone with the ' If you continue without changing your settings, we'll assume that you are happy to receive all cookies on the BBC website'

Thinking about it, is there an oportunity here?  Could you ask people to create an account in order to ensure their privacy settings are remembered correctly?