New EU ‘cookie’ laws that require websites to ask users what data they consent to having stored about them are being ignored by four out of five British Businesses.
The FT reported that, in an analysis of 55 representative UK websites only 20% were complying with the EU privacy directive, which came into force on May 26.
Is it a big surprise when research carried out before the deadline suggested that only 5% of businesses were prepared for the EU regulations?
The new law introduces four new categories for cookies, which the ICC suggests will be identified with four icons. Most sites that ask, however, currently do so with a simple pop-up window asking for generalised consent. Breaches of the code could cost companies £500,000.
The Information Commissioner (ICO) has recently clarified that websites can rely on “implied consent” for some aspects, so long as sites are satisfied that users understand the overall terms to which they have agreed.
Stephen Bonner, a partner at KPMG, told the FT that 40% of businesses had not even updated their privacy policies to cope with the changes, and criticised those who were adopting a ‘wait and see’ approach. He said that sectors with large amounts of data, such as financial services and retail, had made the most progress already.
Have you implemented the changes necessary to comply with the new EU ‘cookie’ laws? We’ve made sure of it.