Customizing SMF > SMF Coding Discussion

[WIP/BETA] EU cookie law

<< < (28/50) > >>

:
Well, XenForo is particularly relevant, it's a paid forum software based primarily (entirely?) in the UK and they've not made any active moves towards it at all.

bonzo:
Ok that is interesting - I had looked around at other forum software and most of those were American based and they had made no mention of EU cookies either.
Even vBulletin seems to be doing nothing which would annoy me as I would be paying for it!

:
Well, XenForo is paid and there's been little more than a two page discussion on it which has amounted to 'it doesn't matter'. Maybe the law will turn out to be a farce but I don't see how it is anything other than irresponsible for software makers not to be concerned by it at this time.

MovedGoalPosts:
The UK's ICO has issued an eleventh hour update to their guidance.  There seems to be a new concept of implied consent to cookies from having visited a website.

For registered users of a forum, that implied consent would seem to exist simply using the standard SMF registration agreement that says there are cookies, especially if one were to add in a privacy policy page.  That assumes of course that the registration agreement phrase
--- Quote ---Also note that the software places a cookie, a text file containing bits of information (such as your username and password), in your browser's cache. This is ONLY used to keep you logged in/out. The software does not collect or send any other form of information to your computer.
--- End quote ---
is correct, as discussions in this thread seems to suggest the cookie does a lot more?

I'm not so sure if implied consent is fully sufficient for guest visits but assuming a site is only adding it's own first party cookies, not third party cookies from other advertisement or analytic type sites, my reading is that again a simple amendment to the standard "welcome guest please login or register" phrase to say the site uses cookies might suffice, especially if the SMF cookie has only a limited life.  That simple phrase amendment is probably a very easy template change.  That just leaves the cookie session setting, and again (I dunno as a lot of this stuff is way over my head of the programming) is one simple file, at least according to the standard SMF agreement that's saying one cookie only is used.

:

--- Quote ---The UK's ICO has issued an eleventh hour update to their guidance.  There seems to be a new concept of implied consent to cookies from having visited a website.
--- End quote ---

You mean, just as they realise this mess has just come into force? :P


--- Quote ---For registered users of a forum, that implied consent would seem to exist simply using the standard SMF registration agreement that says there are cookies, especially if one were to add in a privacy policy page.  That assumes of course that the registration agreement phrase
--- End quote ---

The consent should actually list all the cookies by name and explain what they're doing.


Yes, changing the phrase is as simple as a template change, however it doesn't change the fact that the cookie is only supposed to be sent *if* and only *if* the user opts into it.

And it doesn't alter the fact that SMF has a bug wherein two cookies get used anyway for login even if one of them doesn't have any meaning or use.

Navigation

[0] Message Index

[#] Next page

[*] Previous page

Go to full version