I'm puzzled by the EU cookie law. When someone visits your web site you are now required by law to gain their consent to putting cookies on their computer. How can you record the fact that someone does not want you to put cookies on their computer without using a cookie?
And lots of people are installing little scripts to show pop up windows etc. - but these won't work without javascript.
So a law insisting you gain consent for cookies needs cookies to work and every installation of this 'gaining consent' requires the user to be using javascript too.
As I understand it, there is no requirement to record that someone does NOT want you to put cookies on their site. So just don't put a cookie on their machine, and you are ok.
As I understand it, there is no requirement to record that someone does NOT want you to put cookies on their site. So just don't put a cookie on their machine, and you are ok.
If your site uses cookies - you have to get their permission. If they say 'no', how do you record the fact they said 'no' without using a cookie?
Your solution - 'just don't put a cookie on their machine' would mean that the vast majority of .net sites, for example, would simply not work.
You don't record the 'no' response in a cookie. You record the 'yes' response in a cookie.
Then, on each page on your site, you check for the 'yes' cookie and if your software doesn't find it, the user should be redirected to the opt in/out form where the 'yes' cookie can be given.
I've seen a couple of big sites that just put up a message: "We use cookies. If you continue to visit our site we will take that as agreement to their use. Click here to continue..." or words to that effect. Presumably they record the click to continue as an assent.
I've seen a couple of big sites that just put up a message: "We use cookies. If you continue to visit our site we will take that as agreement to their use. Click here to continue..." or words to that effect. Presumably they record the click to continue as an assent.
Yes, but HOW do they record the click to continue as an assent?
With a cookie?
And if the person does not click and they click links on the site how do they record that the person has NOT clicked the link. Strikes me you have to use a cookie to record the fact that a visitor to your site does not want you to put cookies on their computer! Which is a bit self defeating.
I have seen one site where they put up a window with a button to click to accept cookies - and if you don't click it they send you off to Google. i.e. 'OK, don't use our site then'
I just find it intrusive having to make it the first thing visitors to your web site must do.
Yes, but HOW do they record the click to continue as an assent?
Are you wanting to permanently record this? You could store it in a session variable temporarily, but if they came back tomorrow, you'd be asking them again. I guess that's the issue?
I haven't read the specifics of the rule, I really don't know what they require or not. Is is possible that a cookie that only contains this yes/no flag is ok, and that the law is specific to storing personally identifiable information, not just yes/no stuff?
Reply With Quote
Originally Posted by jedaisoul
Bookmarks