Enter a search term such as “mobile analytics” or browse our content using the filters above.
Check your spelling or try broadening your search.
Sorry about this, there is a problem with our search at the moment.
Please try again later.
How to ensure that your website complies with the EU e-Privacy
The EU Cookie Law guide look into the legal changes as they affect online businesses in the UK, the potential threats to online business models and the steps that companies could be taking now to demonstrate compliance with the EU ePrivacy Directive.
The Information Commissioner's Office (ICO), responsible for ensuring compliance in the UK, itself has admitted that it doesn’t know exactly what compliance will look like and much will depend on what happens when it starts to enforce the EU Directive.
However, there are steps that companies can take now to ensure that their websites are in a position to comply with the new rules.
This 40-page report explains the legislation as far as it affects UK online businesses, sets out some practical steps that you can take towards compliance, as well as showing some practical examples of how websites can gain users’ consent for setting cookies.
The report also contains the findings of Econsultancy's EU e-Privacy Directive survey, a short poll of more than 700 marketers that examines how companies are preparing for the new legislation ahead of the May 26 deadline.
Table of contents
- About Econsultancy
- Purpose of this guide
- The Legal Imperative: what changed?
- Building a solid foundation of knowledge; the detail
- How does this change affect online businesses?
- When will the law come into force?
- What are the penalties for non-compliance?
- Is this really going to happen?
- Summary of key points in the legislation
- The ICO’s guidance
- The third-party cookie problem
- What do marketers think of the ‘cookie law’?
- The cookie conundrum: how will web users react to cookie messaging?
- Approaches for compliance
- The “path to compliance”
- Carry out a cookie audit
- Evaluate the privacy impact of each cookie
- Carry out a business risk assessment
- Look at how you will inform users on your website
- Look at methods for gaining consent
- Six possible responses to the ECPR
- Do nothing at all
- Take small (and slow) steps towards compliance
- Carry out cookie audit and improve on site privacy and cookie messaging
- Implement an implied consent mechanism for cookies
- Assume consent only if users click to accept cookies
- Use interruptive messaging to ensure that customers actively opt-in or out.
- Providing information on cookies and privacy
- Examples of consent mechanisms
- Three possible consent mechanisms
- Modal dialogue
- Status bar
- Warning bar
- Cookie consent: examples from websites
- Cookie consent: key considerations
- Further resources
- Our consultancy services
- Econsultancy reports
- Econsultancy blog posts
- Other resources
- SAMPLE: The EU Cookie Law: A guide to compliance (582 KB PDF)
- The EU Cookie Law: A guide to compliance (2.03 MB PDF)