1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

The European Privacy and Electronic Communications directive

Discussion in 'Off Topic' started by AdrianH, Mar 8, 2011.

  1. AdrianH

    AdrianH Active Member


    So, for all those here within the EU, are you aware of this, is your forum/site compliant?
    CurveGotti likes this.
  2. Shamil

    Shamil Well-Known Member

    The only thing stored on computers of most websites are cookies.
  3. CyclingTribe

    CyclingTribe Well-Known Member

    Hmmm ... no I wasn't.

    I'm not sure there are any privacy issues with a simple login cookie though. There's no personal information stored, just username.

    I wonder what it is us web site owners will be required to do?
  4. sleaver

    sleaver Member

    Is this not just relating to information stored for advertising purposes?
  5. AdrianH

    AdrianH Active Member

    NO, not if you read this.....

  6. ToDie4

    ToDie4 Well-Known Member

    Adding a stipulation in the registration process would about cover this surely, maybe Mike and Co will consider this for the future releases.
  7. sleaver

    sleaver Member

    OK, that will teach me not to read all of it!
  8. Floris

    Floris Guest

    These laws only apply to those who still browse under the assumption there is privacy.
    Onimua, jmurrayhead and Slavik like this.
  9. zappaDPJ

    zappaDPJ Well-Known Member

    On the 25th of May 2011 an amendment to the EU’s Privacy and Electronic Communications Directive will require website owners to obtain consent in order to store or access information on consumers' computers. This is specifically aimed at cookies or as The Register reports...


    If you are in the UK and already aware of this you'll probably already know that the Information Commissioners Office has yet to publish guidance on this issue.

    The question this raises is what exactly is the definition of a website (or forum) that track a users' cookies and assuming your site has an obligation to fulfil, how do you go about it to satisfy those obligations? As I'm sure there are quite a number of website and forum owners here, I was wondering what your opinion is and whether or not you think it will affect you?
  10. Brogan

    Brogan XenForo Moderator Staff Member

    I've merged your thread with an earlier one.
  11. zappaDPJ

    zappaDPJ Well-Known Member

    Cheers, I did search first but clearly missed it :)
  12. Stuart Wright

    Stuart Wright Well-Known Member

    Chaps I have been researching this. I have it on excellent authority that a login cookie is considered essential, but the 'remember me' cookie is not. So right there we have a requirement to request permission.
    The solution at www.AVForums.com (a note next to the tick box) is sufficient for this cookie, but of course, the other none essential ones do require permission.
  13. MGSteve

    MGSteve Well-Known Member

    Besides Stuart, has anyone else actually bothered to do anything about this? A quick check on eBay.co.uk, shows that other that saying clear the 'keep me signed in' box if you're on a shared computer, there's nothing about permissions for cookies.

    I know eBay.co.uk isn't a UK company, but it is registered in the EU and this is an EU directive.
    Eitherway, the BBC doesn't prompt you when it saves your location in a cookie if you want local weather and that's definitely UK based ;)
  14. Slavik

    Slavik XenForo Moderator Staff Member


    This only effects you if you pass cookies onto a 3rd party. Eg, an advertising network or tracking code.

    IF the cookies are required for the functionality of your site, eg login or session cookies, you dont need to do anything.
  15. Adam Howard

    Adam Howard Well-Known Member

    All good here and no worries. (y)
  16. Stuart Wright

    Stuart Wright Well-Known Member

    I'm afraid this is completely wrong.
    If you set any non essential cookies, then you need to get permission. And it's misconceptions like yours that will be part of the problem for us as cookie setting website managers, and the ICO, whose responsibility it is to make sure our sites are legal.
    We have to get permission for Adsense/Ad Exchange and all 3rd party ad cookies, Analytics, Skimlinks, and in our case (running vB 3.8.2), vbseo login cookie, vB last visit cookie and those cookies set by the modifications we have installed over the years.
    Note that if your visitors refuse to have Analytics cookies, then they will not be included in your Analytics stats.
    I have heard that since the ICO site put their cookie question on their site, their traffic as reported by Analytics has dropped by 90%.
    You can be sure that there will be little point in quoting Analytics for visitor stats going forward.
  17. Stuart Wright

    Stuart Wright Well-Known Member

    Just checked your site. You set the usual __utma,b,c and z for Analytics, the xf_session cookie plus a __cfduid permanent cookie.
  18. zappaDPJ

    zappaDPJ Well-Known Member

    Stuart, may I ask the source of your information on this? I've contacted the Information Commissioner's Office on a number of occasions and they have led me to believe that login cookies for forums are not considered essential. That said, I have had some doubts about their technical competency in this area so I'm still trying to obtain accurate information.

    PS: Great job on the new AVForums style, it's never looked better (y)
  19. CyclingTribe

    CyclingTribe Well-Known Member

    I'm interested in how they are going to police/prosecute this? Is it going to be lead by direct complaints from the public? Will you be given the opportunity to make adjustments? How the hell do you manage "permission" from guests without identifying them?

    It doesn't appear very well thought out and I'm not sure - technically anyway - how to resolve the "getting permission" bit on my forums!
  20. MagnusB

    MagnusB Well-Known Member

    Funnily enough, it appears you will have to set an extra cookie for those allowing you to store cookies.


    As far as I can see, those guidelines are valid for UK, not sure if there will be local interpretations.

Share This Page