[
https://jira.duraspace.org/browse/DS-1245?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=27685#comment-27685
]
Graham Triggs commented on DS-1245:
-----------------------------------
"There is an exception to the requirement to provide information about cookies
and obtain consent where the use of the cookie is:
(a) for the sole purpose of carrying out the transmission of a communication
over an electronic communications network; or
(b) where such storage or access is strictly necessary for the provision of an
information society service requested by the subscriber or user."
Which clears the use of JSESSIONID. With regards to analytics (just a brief
snippet):
"This is especially important with regard to commonly used features such as web
analytics. It is clearly the case that the majority of websites undertake some
form of analytics activity and most of those will use cookies to facilitate
some if not all of that activity. The Information Commissioner recognises that
gaining explicit opt-in consent for analytics cookies is difficult and that
implied consent might be the most practical and user-friendly option."
Overall, the advice seems to be to provide information about the analytics
cookies, but not necessarily ask consent.
> European Cookie Law Compliance
> ------------------------------
>
> Key: DS-1245
> URL: https://jira.duraspace.org/browse/DS-1245
> Project: DSpace
> Issue Type: New Feature
> Reporter: Bram Luyten (@mire)
>
> Due to e-Privacy regulations in Europe, many websites are now taking measures
> by means of notifying users and in some cases even requesting acceptance for
> storing information in cookies.
> Apart from the session cookie described here
> https://wiki.duraspace.org/display/DSPACE/SecuringDspace I am not aware of
> which information DSpace stores and uses in cookies. So in order to deal with
> this it should be clear what is stored, and based on what is stored, which
> kinds of notifications are required.
> more information:
> http://www.ico.gov.uk/news/blog/2012/updated-ico-advice-guidance-e-privacy-directive-eu-cookie-law.aspx
> http://econsultancy.com/be/blog/9990-the-bbc-unveils-its-eu-cookie-law-solution
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
------------------------------------------------------------------------------
Free Next-Gen Firewall Hardware Offer
Buy your Sophos next-gen firewall before the end March 2013
and get the hardware for free! Learn more.
http://p.sf.net/sfu/sophos-d2d-feb
_______________________________________________
Dspace-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/dspace-devel
