Hi Guys,
I assume I'm not the only web developer here who's starting to get a little twitchy about the amendments to the E-Privacy directive regarding storing cookies? Anyone got systems in place or found any loopholes around this yet? I've been having a read of the actual directive today, and it looks to me like there may be a number of circumstances in which you don't need to provide explicit information (as well as the ridiculous shopping cart exclusion). The relevant section (Article 5, Paragraph 3) includes the statement
Perhaps it's just me, but that seems to read that where a user has explicitly requested to do something on your service (e.g. to log in) you can store the log in cookie without providing extensive information that would otherwise be required.This shall not prevent any technical storage or access for the sole purpose of carrying out or facilitating the transmission of a communication over an electronic communications network, or as strictly necessary in order to provide an information society service explicitly requested by the subscriber or user.
Thoughts anyone?