In line with recent changes in European legislation, UK law now requires website operators to ask
for a website user’s permission when placing certain kinds of cookie on their devices for the first
time. Where consent is required, the law states that it should be “informed consent”.
Should this be considered in 2.6 as it affects all nopcommerce users in the EU. Fines of £500k can be issued
More info - http://www.international-chamber.co.uk/components/com_wordpress/wp/wp-content/uploads/2012/04/icc_uk_cookie_guide.pdf
EU cookies regulations
Team Member
- 16627
- 156030
- 10/22/2008
- Armenia
I've just created a work item
BTW, I've never seen that big players (such as Apple, Amazon, etc) asked user permission to send cookies.
BTW, I've never seen that big players (such as Apple, Amazon, etc) asked user permission to send cookies.
- 590
- 5284
- 2/9/2010
- United Kingdom
Hi Andrei
I think the big players are counting on large legal teams to get them out of trouble.
Here is a link to the UK guidelines
http://www.ico.gov.uk/for_organisations/privacy_and_electronic_communications/the_guide/cookies.aspx
There are some Exemptions to the rules about gaining informed consent.
ico.gov.uk wrote:
Could you provide a list of all instances of cookie use within NopCommerce for all versions and for what reason the cookie is used?
Dave
I think the big players are counting on large legal teams to get them out of trouble.
Here is a link to the UK guidelines
http://www.ico.gov.uk/for_organisations/privacy_and_electronic_communications/the_guide/cookies.aspx
There are some Exemptions to the rules about gaining informed consent.
ico.gov.uk wrote:
Exemptions from the right to refuse a cookie
The Regulations specify that service providers should not have to provide the information and obtain consent where that device is to be used:
for the sole purpose of carrying out or facilitating the transmission of a communication over an electronic communications network; or
where such storage or access is strictly necessary to provide an information society service requested by the subscriber or user.
In defining an 'information society service' the Electronic Commerce (EC Directive) Regulations 2002 refer to 'any service normally provided for remuneration, at a distance, by means of electronic equipment for the processing (including digital compression) and storage of data, and at the individual request of a recipient of a service'.
The term 'strictly necessary' means that such storage of or access to information should be essential, rather than reasonably necessary, for this exemption to apply. However, it will also be restricted to what is essential to provide the service requested by the user, rather than what might be essential for any other uses the service provider might wish to make of that data. It will also include what is required to comply with any other legislation the service provider might be subject to, for example, the security requirements of the seventh data protection principle.
Where the use of a cookie type device is deemed 'important' rather than 'strictly necessary', those collecting the information are still obliged to provide information about the device to the potential service recipient and obtain consent.
The Regulations specify that service providers should not have to provide the information and obtain consent where that device is to be used:
for the sole purpose of carrying out or facilitating the transmission of a communication over an electronic communications network; or
where such storage or access is strictly necessary to provide an information society service requested by the subscriber or user.
In defining an 'information society service' the Electronic Commerce (EC Directive) Regulations 2002 refer to 'any service normally provided for remuneration, at a distance, by means of electronic equipment for the processing (including digital compression) and storage of data, and at the individual request of a recipient of a service'.
The term 'strictly necessary' means that such storage of or access to information should be essential, rather than reasonably necessary, for this exemption to apply. However, it will also be restricted to what is essential to provide the service requested by the user, rather than what might be essential for any other uses the service provider might wish to make of that data. It will also include what is required to comply with any other legislation the service provider might be subject to, for example, the security requirements of the seventh data protection principle.
Where the use of a cookie type device is deemed 'important' rather than 'strictly necessary', those collecting the information are still obliged to provide information about the device to the potential service recipient and obtain consent.
Could you provide a list of all instances of cookie use within NopCommerce for all versions and for what reason the cookie is used?
Dave
- 562
- 6178
- 10/26/2011
- United Kingdom
a.m. wrote:
BT are a pretty big player. They have complied on their site
http://www.bt.com/
I've just created a work item
BTW, I've never seen that big players (such as Apple, Amazon, etc) asked user permission to send cookies.
BTW, I've never seen that big players (such as Apple, Amazon, etc) asked user permission to send cookies.
BT are a pretty big player. They have complied on their site
http://www.bt.com/
Team Member
- 16627
- 156030
- 10/22/2008
- Armenia
daveb wrote:
There are no much places where cookies are used. Just open the solution in Visual Studio and search by "HttpCookie":
1. FormsAuthenticationService.cs and WebWorkContext.cs - to store customer authentication infor
2. CompareProductsService.cs - to store a list for compare products page
3. RecentlyViewedProductsService.cs - to store a list for recently viewed products
Could you provide a list of all instances of cookie use within NopCommerce for all versions and for what reason the cookie is used?
There are no much places where cookies are used. Just open the solution in Visual Studio and search by "HttpCookie":
1. FormsAuthenticationService.cs and WebWorkContext.cs - to store customer authentication infor
2. CompareProductsService.cs - to store a list for compare products page
3. RecentlyViewedProductsService.cs - to store a list for recently viewed products
Team Member
- 16627
- 156030
- 10/22/2008
- Armenia
Done. Please see changeset 87910dfad800 and let me know your thoughts
MVP
- 594
- 6640
- 5/16/2009
- United Kingdom
Hi Guys
I am having a problem getting the EU Cookie Law changeset to work, i have added all the elements to all the required pages and added EuCookieLaw.cshtml everything is correct as per the changeset 87910dfad800, at the moment I have two problems hopefully they are related and will make it easier to resolve.
1) Although in the admin area I am getting the tick box, but the label is using the full resource name instead of the resource value ie:Admin.Configuration.Settings.GeneralCommon.DisplayEuCookiesLawWarning.
Have resolved below and can now see it in source code of page, but still not getting the Dialog Box even after flushing the cache
2) Seems to be a problem with the EuCookieLaw.cshtml in the Javascript, @T("EUCookieLaw.OK"): function () is complaining that "Conditional Compilation is turned off", which i assume is stopping the dialog box from appearing can anyone shed any light on this for me, and has anyone implemented the changeset as yet.
nopCommerce version is 2.50
Any help as always would be most appreciated.
Kind Regards
Ron
I am having a problem getting the EU Cookie Law changeset to work, i have added all the elements to all the required pages and added EuCookieLaw.cshtml everything is correct as per the changeset 87910dfad800, at the moment I have two problems hopefully they are related and will make it easier to resolve.
1) Although in the admin area I am getting the tick box, but the label is using the full resource name instead of the resource value ie:Admin.Configuration.Settings.GeneralCommon.DisplayEuCookiesLawWarning.
Have resolved below and can now see it in source code of page, but still not getting the Dialog Box even after flushing the cache
2) Seems to be a problem with the EuCookieLaw.cshtml in the Javascript, @T("EUCookieLaw.OK"): function () is complaining that "Conditional Compilation is turned off", which i assume is stopping the dialog box from appearing can anyone shed any light on this for me, and has anyone implemented the changeset as yet.
nopCommerce version is 2.50
Any help as always would be most appreciated.
Kind Regards
Ron