ePrivacy Directive

13 November 2012 at 4:43pm

Legal issues in dealing with Botnets

Andrew Cormack
Botnets
Data Protection Regulation
CSIRT
ePrivacy Directive
incident response
malware
An interesting paper from ENISA and the NATO Cyberdefence Centre illustrates the narrow space that the law allows for incident response, and the importance of ensuring that new laws don’t prevent incident response teams from protecting networks, systems, their users and information against attack.
Read more
20 September 2012 at 12:15pm

ENISA on cyber incident reporting

Andrew Cormack
Breach Notification
Data Protection Regulation
ePrivacy Directive
incident response
eSignature Directive
ENISA have  published an interesting report on cyber incident reporting. Their scope is wide – incidents range from the failure of a certificate agency to storms creating widespread power (and therefore connectivity) outages.
Read more
3 January 2013 at 11:37am

Art.29WP on Cookies - specific and pragmatic advice

Andrew Cormack
Privacy
data protection
ePrivacy Directive
Cookies
The e-Privacy Directive's provisions on cookies exempt two classes of cookies from the requirement to gain consent (though if they relate to individual users, websites still need to inform users about them, under data protection law):
Read more

Cookie Law Update

Andrew Cormack
7 June 2012 at 3:10pm
Cookies
ePrivacy Directive
Data Protection Act
Privacy
Cookie Law Update By Andrew Cormack 13 June 2012, 12.30-13.30 In 2009 an apparently minor amendment was made to European telecoms privacy law that turns out to have significant implications for websites using cookies as well as other technologies such as e-mail tracking. The change became UK law in 2011 and will be enforced by the Information Commissioner from May 2012. Programme: Discuss what organisations can do to work towards compliance Discuss some examples of how others have responded to the law Q&A Session
Read more
6 June 2012 at 11:49am

Shiny New Legislation

Andrew Cormack
Data Retention Directive
Digital Economy Act
Regulation of Investigatory Powers Act
ePrivacy Directive
I was recently struck by just how new most of the legislation creating duties for operators of electronic communications network is. Compared to the Computer Misuse Act, which has only had one amendment since 1990, these laws seem to be changing a lot faster:
Read more
6 June 2012 at 11:49am

ICC Cookie Guide

Andrew Cormack
Cookies
Privacy
ePrivacy Directive
The International Chamber of Commerce has published a Guide to cookies to help businesses comply with the legislation and individuals understand what is being done with their data. Rather than concentrating on the legal issues, the guide aims to develop a common terminology for different types of cookie use, which should help to increase users’ familiarity with the different types of cookie and help them to make properly informed choices.
Read more
6 June 2012 at 12:23pm

Cookies: Views from the Government Digital Service

Andrew Cormack
Cookies
Privacy
ePrivacy Directive
I've just come across an excellent pair of posts from the Cabinet Office's Government Digital Service on how Gov.UK websites are approaching compliance with the new law on cookies in line with the Information Commissioner's advice.
Read more
6 June 2012 at 11:22am

Article 29 Working Party supports Do Not Track for cookies

Andrew Cormack
Cookies
Privacy
ePrivacy Directive
Data Guidance reports that the Article 29 Working Party have agreed with the Commission that the World Wide Web Consortium (W3C)’s Do Not Track proposals are “one of the most promising initiatives” to make behavioural advertising comply with European laws on data protection and cookies.
Read more
6 June 2012 at 11:17am

Cookies and Intranets

Andrew Cormack
Cookies
Privacy
ePrivacy Directive
The Information Commissioner’s latest guidance on cookies contains some good news for anyone trying to work out how to make a host of internal websites compliant: How do these rules apply to intranets? In our view the rules do not apply in the same way to intranets.
Read more
6 June 2012 at 11:10am

More Cookie Advice

Andrew Cormack
Cookies
Privacy
ePrivacy Directive
The Information Commissioner's updated guidance on cookies contains helpful examples and a useful clarifications on cookies not directly linked to a user service (I'm reassured that the Commissioner seems to be heading for the same categories as I came up with).
Read more
Subscribe to ePrivacy Directive