This is just a thought on the rules and requirements for Cookies on web sites. It is not a usual area of compliance that I focus on but I think it is important enough for focus!
I have seen a number of web sites recently where there is no explicit request for confirmation by the user to assent to the use of cookies. This is now a key part of EU Data Protection and failure to comply does render a firm or an individual liable to enforcement and potentially a fine from the Information Commissioner.
As an aside, if you monetise your website using Google Adsense you are also at risk of being struck off by them for failure to comply. Compliance here is not an FCA matter directly but obviously if you are in breach of data protection requirements then this could be of interest to them.
Basically what you need is a popup message when a person first accesses you website that explains a bit about cookies and how you use data. You should also refer them to a privacy policy which should be somewhere on your site.If you do not have these, you need to take action now because you are in breach of legal requirements.
There are a number of free facilities available on the internet and I am happy to refer you to these if you need them, if you let me know. I can also provide you with an example of a privacy statement if you so wish. Obviously privacy statements can be as varied as firms can be different.
This is an action to take now rather than later becasue the originbal legislation came in some time ago.
No comments:
Post a Comment