Best Practices to Comply with Cookie Law in the UK

 

Here is the IAB’s own site with examples of best practice principles: www.youronlinechoices.com

Here are some great sites we like - http://www.cookielaw.org/ – (DISCLAIMER – THIS IS THE NATIVES FAVOURED APPROACH)

http://www.predictiveintent.com/2012/02/cookie-law-solutions/

We have spoken to our account managers at Google and below is their advice regarding cookies for online advertising:

“Until the 27 individual EU countries have completed drafting and finalizing the law for their respective countries, we will not know the full scope & implications of the new rules.

We can’t give you legal advice or endorse any particular compliance approach, but you might look at:

The advice that the UK government has given to its webmasters. http://digital.cabinetoffice.gov.uk/2012/03/19/its-not-about-cookies-its-about-privacy/

We’ve also drafted a “Privacy and Cookie Policy” we would recommend any organisation uses on their site:

The policy is:

We may remarket your information. Remarketing is a way for us to connect with users, based upon your past interactions with the [ORGANISATION NAME] website. Third-party marketing vendors may be hired by [ORGANISATION NAME] to perform remarketing services. As a result, third-party vendors, including Google, may show [ORGANISATION NAME] ads on sites on the internet. Third-party vendors, including Google, use cookies to serve ads based on a user’s prior visits to [ORGANISATION NAME]‘s website.

To opt out of customized Google Display Network ads click here. To find out more about how Google uses any data it collects please visit http://www.google.com/privacy_ads.html.

Any information collected is used only for remarketing purposes and will not be used by them for any other purpose.

We would also recommend you take a good look at your website and check what data files are placed on user terminals and why they are in place. You might need to take a comprehensive audit of your website to see which cookies are strictly necessary and if they really need consent. Your audit should include finding out the high and low privacy intrusive pages on your site. Your finding could be presented in a way of a summary of findings, detailed findings against intrusive pages, data privacy risks and technologies to be implemented. Its a good idea to take this opportunity to do any tidying up of your web pages and stop any cookies that are unnecessary or old.

Therefore its important to see how intrusive your cookies are and consider changes in how you use them. Some of  what you find may even help users to keep their data safe. Try to use technologies to improve your site  and always make it clear when you are doing something intrusive. The more privacy intrusive your activity is, you will need to give it more priority to getting consent from the user. You should focus your efforts on complying appropriately to the new cookie law by providing accurate information and offering your user a choice.

Review your privacy policy and make sure it is consistently in compliance with the new cookie law and that it will be subject to any ongoing amendments. Make sure your privacy  policy is clear and as soon as you have the correct measures in place to comply with the law so we can do our job in making sure your campaigns are the best they can be!