<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
Okay, I've found the text backing up my previous statement.<br>
<br>
In Article 5 paragraph 3 there are these weasel words:<br>
"This shall not prevent any technical storage or access for the sole
purpose of carrying out or facilitating the transmission of a
communication over an electronic communications network, or as
strictly necessary in order to provide an information society
service explicitly requested by the subscriber or user."<br>
<br>
As the user has chosen to go to a ZendTo website and logged in (or
otherwise accepted session cookies labelling their session), these
cookies are solely for the purpose of providing the service
explicitly requested by the user. Without them, nothing works at
all. They aren't used for anything else. That counts as "solely" in
my book.<br>
<br>
The document this is from is here:<br>
<a class="moz-txt-link-freetext" href="http://eur-lex.europa.eu/LexUriServ/LexUriServ.do?uri=CELEX:32002L0058:EN:HTML">http://eur-lex.europa.eu/LexUriServ/LexUriServ.do?uri=CELEX:32002L0058:EN:HTML</a><br>
which is the new legislation.<br>
<br>
So I am not intending to modify ZendTo at all, and would strongly
discourage anyone else from doing so.<br>
<br>
Cheers,<br>
Jules.<br>
<br>
On 20/04/2012 12:02, Jules wrote:
<blockquote cite="mid:4F914229.3060809@Zend.To" type="cite">
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
As far as I know, where cookies are session cookies for the
purposes of being logged in to a website, they are exempt.<br>
<br>
I'll try to find some evidence to back up this statement.<br>
<br>
Jules.<br>
<br>
On 20/04/2012 11:55, Nigel Kendrick wrote:
<blockquote
cite="mid:CAECWQnSe0Y0NMLEe+VWuSuVgei=J3eWQJ4bMQLp56RZCuVRsOw@mail.gmail.com"
type="cite">Not according to this article - it seems best to
assume you need to cover yourself although I can't see the whole
world being sued for the sake of a session cookie or two, but as
the person who would be in the firing line I am happy to cover
my ass.<br>
<br>
<a moz-do-not-send="true"
href="http://www.pubcon.com/ico-david-evans-explains-uk-cookies-compliance">http://www.pubcon.com/ico-david-evans-explains-uk-cookies-compliance</a><br>
<br>
"<strong>1. Can we get clarification as to whether session
cookies that are stored in the browser memory and not
physically in a file are subject to the law?</strong>
<p> I think technically speaking the law doesn't differentiate
between different types of cookie, so in other words if it's
something stored on a device - whether its in a file or a
browser - then it is caught, if you like, by this law.
...[snip]...So, the short answer is yes they are caught, but
the slightly longer answer is that clearly we will take that
into account when people are trying to comply with this law. "<br>
</p>
<br>
<br>
<div class="gmail_quote">On 20 April 2012 11:21, Alexander
Fisher <span dir="ltr"><<a moz-do-not-send="true"
href="mailto:alex@alexfisher.me.uk">alex@alexfisher.me.uk</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">
<div class="HOEnZb">
<div class="h5">On 20 April 2012 10:56, Nigel Kendrick
<<a moz-do-not-send="true"
href="mailto:linker3000@gmail.com">linker3000@gmail.com</a>>
wrote:<br>
> Hi Jules, everyone,<br>
><br>
> As far as I can tell, the Zendto site uses a
session cookie and so needs to<br>
> comply with the EU Directive relating to site
cookies. I can lash up my own<br>
> disclaimer/'I agree to cookies' front-end, but this
is unlikely to survive<br>
> site updates so is there a chance of anything
official being added in the<br>
> near future.<br>
<br>
</div>
</div>
I'm pretty sure these cookies are exempt.<br>
<br>
Where a cookie is 'strictly necessary' in order to provide
the<br>
service, you don't need to get consent.<br>
<a moz-do-not-send="true"
href="http://www.ico.gov.uk/for_organisations/privacy_and_electronic_communications/the_guide/cookies.aspx"
target="_blank">http://www.ico.gov.uk/for_organisations/privacy_and_electronic_communications/the_guide/cookies.aspx</a><br>
_______________________________________________<br>
ZendTo mailing list<br>
<a moz-do-not-send="true" href="mailto:ZendTo@zend.to">ZendTo@zend.to</a><br>
<a moz-do-not-send="true"
href="http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto"
target="_blank">http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto</a><br>
</blockquote>
</div>
<br>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
ZendTo mailing list
<a moz-do-not-send="true" class="moz-txt-link-abbreviated" href="mailto:ZendTo@zend.to">ZendTo@zend.to</a>
<a moz-do-not-send="true" class="moz-txt-link-freetext" href="http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto">http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto</a></pre>
</blockquote>
<br>
<pre class="moz-signature" cols="72">Jules
--
Julian Field MEng CITP CEng
<a moz-do-not-send="true" class="moz-txt-link-abbreviated" href="http://www.Zend.To">www.Zend.To</a>
Follow me at twitter.com/JulesFM
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
'It's okay to live without all the answers' - Charlie Eppes, 2011
'All programs have a desire to be useful' - Tron, 1982
'That is the land of lost content,
I see it shining plain,
The happy highways where I went,
And cannot come again.' - A.E. Houseman
</pre>
</blockquote>
<br>
<pre class="moz-signature" cols="72">Jules
--
Julian Field MEng CITP CEng
<a class="moz-txt-link-abbreviated" href="http://www.Zend.To">www.Zend.To</a>
Follow me at twitter.com/JulesFM
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
'It's okay to live without all the answers' - Charlie Eppes, 2011
'All programs have a desire to be useful' - Tron, 1982
'That is the land of lost content,
I see it shining plain,
The happy highways where I went,
And cannot come again.' - A.E. Houseman
</pre>
</body>
</html>