[Building Sakai] EU Cookie Disclosure
csev
csev at umich.edu
Tue Mar 27 08:57:52 PDT 2012
Is anyone having issues with the new EU Cookie guide? I am surprised this has not come up on the list so far.
I am wondering if this is painful enough to get it into 2.9, back-port it, etc etc?
Here is the summary from John Fontaine based on his research:
http://www.ico.gov.uk/for_organisations/privacy_and_electronic_communications/the_guide/cookies.aspx
Basically it means that applications like Sakai must disclose to end users that we are using cookies and obtain their consent to the cookies (ideally prior to setting the cookie, but can be concurrent with the cookie being set if the cookie is strictly necessary for application functioning). This disclosure and consent can't be reliant on the web browser preferences, but must be stated clearly. An information page should also be provided detailing all the cookies set by the application, any third party cookies (e.g. Google analytics, youtube flash cookies) and any applications installed on the end users "terminal device" (computer, smartphone, etc). This page should describe the item installed (cookie, etc), how it is used and what personal information might be exposed. The user should be presented with an "opt-in" chekcbox" that tracks that they have agreed to the cookie's being installed (which can ironically use a cookie to track this setting).
I am happy to figure out a place in login or in /portal to put this if people are getting pressure.
/Chuck
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://collab.sakaiproject.org/pipermail/sakai-dev/attachments/20120327/28198201/attachment.html
More information about the sakai-dev
mailing list