Advertisement

June 19, 2013

UK's Information Commissioner's Office Publishes Guidance on the "Cookie Directive"

McDermott Will & Emery
Rohan Massey
Leigh J. Smith
McDermott Will & Emery
Friday, May 13, 2011
Communications, Media & Internet / Intellectual Property
European Union / United Kingdom
Printer-friendly
Email this Article
Download PDF
Reprints & Permissions

On 9 May 2011, the UK Information Commissioner’s Office (ICO) published its much-anticipated guidance on the amendments to the EU Privacy and Electronic Communications Directive, commonly referred to as the Cookie Directive.  This name is derived from the requirement under the Directive that consent must be given for cookies to be placed on a user’s computer.  Given the ubiquitous use of cookies, the implementation of the Directive could have wide-ranging implications for the functionality of websites.  The ICO has confirmed that the amended Directive will apply in the United Kingdom from 26 May 2011.

The ICO guidance does not provide a prescriptive list of instructions as to how website operators should comply with the amended Directive.  The guidance does, however, give insight into the ICO’s approach to consent.  The ICO envisages a sliding scale of consent:  if a cookie is particularly intrusive, the website operator should seek to prioritise obtaining meaningful consent for this particular cookie.  At the same time, the ICO acknowledges that some cookies have little impact on a user’s privacy and suggests that consent can be gained in a less direct manner.  The ICO’s suggested measures include consent notices in the website terms and conditions, and pop-up windows requesting consent or advising users as to the existence of third-party cookies.

The guidance addresses the key question of whether a website operator can seek to rely on the settings of the user’s internet browser as evidence of consent.  The Directive suggests this as an option where an internet user changes the default settings on an internet browser to accept cookies.  The UK Government’s response paper to the Directive also stated that the UK Government’s preferred approach is to work with browser manufacturers on a solution which will use enhanced browser settings to obtain the requisite consent.  For more information, click here. The ICO’s position, for the moment at least, is that the settings of the user’s internet browser cannot be relied upon as consent.  This may change if browser manufacturers can produce an adequate solution.

As the amendments enter into force shortly, website operators are advised to undertake a comprehensive audit of their use of cookies and consider what steps they will need to take in order to comply.  Although the ICO is not expected to take enforcement action in the short term, all website operators still should bear in mind the risks of future enforcement and negative publicity for an ongoing failure to comply.

© 2013 McDermott Will & Emery

About the Author

Rohan Massey
Partner

Rohan Massey is a partner in the law firm of McDermott Will & Emery UK LLP, based in its London office.  He focuses his practice on media, e-commerce, outsourcing, IT and data protection.  As well as advising on intellectual property issues arising in corporate transactions, Rohan specialises in media and marketing, advising on a wide range of sponsorship, advertising, sales promotions, clinical trials and intellectual property issues.  His client base is international in scope, as he works extensively across Europe and has been based in our LA office. ...

rmassey@mwe.com
44-20-7577-6929
www.mwe.com

About the Author

Leigh J. Smith
Associate

Leigh J. Smith is an associate at the law firm of McDermott Will & Emery UK LLP based in the London office.  He focuses his practice on all aspects of intellectual property law, with a particular emphasis on trade marks.

ljsmith@mwe.com
+44 20 7570 1437
www.mwe.com

Boost: AJAX core statistics

Legal Disclaimer

You are responsible for reading, understanding and agreeing to the National Law Review's (NLR’s) and the National Law Forum LLC's  Terms of Use and Privacy Policy before using the National Law Review website. The National Law Review is a free to use, no-log in database of legal and business articles. The content and links on www.NatLawReview.com are intended for general information purposes only. Any legal analysis, legislative updates or other content and links should not be construed as legal or professional advice or a substitute for such advice. No attorney-client or confidential relationship is formed by the transmission of information between you and the National Law Review website or any of the law firms, attorneys or other professionals or organizations who include content on the National Law Review website. If you require legal or professional advice, kindly contact an attorney or other suitable professional advisor.  

Some states have laws and ethical rules regarding solicitation and advertisement practices by attorneys and/or other professionals. NLR does not accept advertising from attorneys or law firms. The National Law Review is not a law firm nor is www.NatLawReview.com  intended to be an advertisement or a referral service for attorneys and/or other professionals. The NLR does not wish, nor does it intend, to solicit the business of anyone or to refer anyone to an attorney or other professional.  NLR does not answer legal questions nor will we refer you to an attorney or other professional if you request such information from us. 

Under certain state laws the following statements may be required on this website and we have included them in order to be in full compliance with these rules. The choice of a lawyer or other professional is an important decision and should not be based solely upon advertisements. Attorney Advertising Notice: Prior results do not guarantee a similar outcome. Statement in compliance with Texas Rules of Professional Conduct. Unless otherwise noted, attorneys are not certified by the Texas Board of Legal Specialization, nor can NLR attest to the accuracy of any notation of Legal Specialization or other Professional Credentials.