Upgrade to Pro — share decks privately, control downloads, hide ads and more …

The Cookie Law

Ian Barber
February 24, 2012
Technology
1
710

The Cookie Law

A brief discussion of issues around the EU Privacy Directive with regards to the use of cookies in the UK. Given in the PHP UK 2012 Unconference.

Ian Barber

February 24, 2012
Tweet

More Decks by Ian Barber

See All by Ian Barber
Crossing Platforms With Google+ Sign-In
ianbarber
0
120
How Google Builds Webservices
ianbarber
3
280
Mobile & Social
ianbarber
2
120
Event Stream Processing In PHP
ianbarber
7
2.2k
Building A Firehose - PHPNW
ianbarber
2
700
Clojure for PHP Developers
ianbarber
6
1.7k
Building a Firehose
ianbarber
5
1.1k
Taking Sites Mobile
ianbarber
1
410
Teaching Your Machine To Find Fraudsters
ianbarber
3
810

Other Decks in Technology

See All in Technology
食べログChatGPTプラグイン導入で見えてきた未来:データサイエンティストの向き合い方
moritama1515
PRO
3
410
とあるQAエンジニアが、マイクロサービスの開発チームと、出会ったーー / Scrum Fest Niigata 2023
yoyakoba
0
160
Large Language Models: From Prototype to Production
inesmontani
PRO
7
2.4k
プロデュ―サーさん、今日も安全運転でよろしくね☆~OBD2を用いた速度・回転数検知ツールの開発~
hato3isfriend
0
130
Get started with OSS contributions
sinsoku
2
670
Autonomous Database Cloud 技術詳細 / adb-s_technical_detail_jp
oracle4engineer
PRO
10
26k
IaCのCI/CDを考えよう / JAWS-UG_Okayama_IaC_CICD
taishin
1
160
「XIAOGYAN」への想い
matsujirushi
0
170
Microsoft Build 2023 ふりかえり - IoT と AI 周りを中心に
mode86
0
140
バリエーションで差をつける。myshoesの新たな挑戦 #cicd_test_night
whywaita
PRO
0
500
ハンズオンで学ぶ! Instana基礎
daihiraoka
1
140
AI in Action
charmichokshi
0
170

Featured

See All Featured
Practical Orchestrator
shlominoach
179
9.1k
Designing with Data
zakiwarfel
92
4.3k
Art, The Web, and Tiny UX
lynnandtonic
285
18k
Java REST API Framework Comparison - PWX 2021
mraible
PRO
16
5.8k
Designing for Performance
lara
601
65k
Happy Clients
brianwarren
90
6k
Fashionably flexible responsive web design (full day workshop)
malarkey
395
64k
The Web Native Designer (August 2011)
paulrobertlloyd
78
2.3k
How to name files
jennybc
51
79k
Clear Off the Table
cherdarchuk
81
300k
Ruby is Unlike a Banana
tanoku
93
9.7k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
225
50k

Transcript

  1. THE COOKIE LAW
    [email protected]

    View Slide

  2. 6.—(1) Subject to paragraph (4), a person shall not use an
    electronic communications network to store information, or
    to gain access to information stored, in the terminal
    equipment of a subscriber or user unless the requirements of
    paragraph (2) are met.
    (2) The requirements are that the subscriber or user of that
    terminal equipment—
    (a)is provided with clear and comprehensive information about
    the purposes of the storage of, or access to, that information;
    and
    (b)is given the opportunity to refuse the storage of or access
    to that information.
    The Privacy and Electronic Communications
    (EC Directive) Regulations 2003

    View Slide

  3. (3) For paragraph (2)(b) substitute “(b) has given his or her
    consent”.
    The Privacy and Electronic Communications
    (EC Directive) (Amendment) Regulations 2011

    View Slide

  4. User
    Session
    Client
    Local
    Track &
    Profile

    View Slide

  5. User
    Session
    Most
    Preferences
    Shopping
    Basket
    Analytics Ad
    Network
    Behavioural
    Tracking/
    Retargetting
    Social
    Plugins
    Affiliate

    View Slide

  6. Remove
    Replace
    Get Consent

    View Slide

  7. Remove

    View Slide

  8. View Slide

  9. View Slide

  10. Replace
    Flash Local Shared Objects
    Silverlight Isolated Storage
    HTML5 Local/Global/Session/
    Database Storage
    Image Cache
    Browser History

    View Slide

  11. Query Parameters
    Last-­‐Modified:  Thu,  21  May  2009  21:26:08  
    GMT
    ETag:  "650a7c7523865eae0c7294aa4e7b50dd"
    ETags
    94.13.243.217  -­‐  [13/Feb/2012:14:19:57  
    +0000]  "GET  /user/themes/dilectio/
    images/mright.gif  HTTP/1.1"  200  390
    Log Analysis

    View Slide

  12. Javascript Fingerprinting
    https://panopticlick.eff.org/

    View Slide

  13. Client Server
    request ad / send cookie
    send targeted ad
    request ad
    send tracking JS
    send finger print
    send targeted ad

    View Slide

  14. Get Consent

    View Slide

  15. View Slide

  16. View Slide

  17. View Slide

  18. View Slide

  19. View Slide

  20. •Web Statistics
    •Google Analytics
    •_utmz

    View Slide

  21. View Slide

  22. View Slide

  23. “Although the Information Commissioner cannot
    completely exclude the possibility of formal action in
    any area, it is highly unlikely that priority for any
    formal action would be given to focusing on uses of
    cookies where there is a low level of intrusiveness and
    risk of harm to individuals. “

    View Slide