Draft EU ePrivacy Regulation Leaked
By: Richard Beaumont | Wednesday, December 14, 2016 | Tagged: Cookie Law, ePrivacy, ePrivacy Regulation | Leave CommentA draft of the proposed legislation to replace the outdated EU ePrivacy Directive was leaked on the Politico.eu (PDF) website this week.
The proposal is for a much stricter regime, requiring prior consent for cookies and any kind of online tracking techniques. Fines for failure to comply may reach as high as 4% of a company’s global revenues.
The proposed new instrument will be a directly applicable Regulation, and is intended to harmonise communications privacy rules with the wider GDPR. Unlike the GDPR there will be only a 6 month lead in period from the law being passed, which will not give much time for business to react.
The revised rules are particularly aimed at what the legislators call the ‘surreptitious monitoring’ of online behaviour, and will have a big impact on third party cookies and tracking that enables often invisible companies to build up profiles of web users internet activity.
There are some changes that will be welcomed by website owners, most notably that web analytics will be exempt from the requirement for consent.
A lot of emphasis is placed on encouraging web browsers to take more active role in mediating consent to avoid the need for overly intrusive pop-ups, but this will rely on some significant changes to the way most browsers currently work – so it remains to be seen whether they will be willing and able to take on such responsibilities. What is very likely however is that the Do Not Track setting in browsers will take on more significance than it has to date.
As with the GDPR, the new ePrivacy Regulation will have significant extra territorial effects, and will require websites around the world to respect the rights of EU based visitors.
What Does This Mean for Website Owners?
This is of course a draft, and we can expect much negotiation and lobbying especially from the online advertising industry, before we get to a final text. However, what seems inevitable now is that the big fines will mean the cost of getting cookie compliance wrong in the future, will be much more significant.
It also looks inevitable that even if you have a cookie solution in place on your website today, you will need to look again at how it works to make sure it will be compliant with these new rules.
We also anticipate that companies with have to pay much closer attention to ongoing monitoring of their sites in the future, making sure that the remain compliant with every change they introduce.
We will of course be actively monitoring the situation, and making sure our clients are prepared for whatever the future for cookie compliance brings.
Tag Cloud
-
Cookie Law (58)
-
ICO (19)
-
Do Not Track (18)
-
Optanon (13)
-
Cookiepedia (11)
-
Facebook (10)
-
Google (9)
-
Cookie Audit (8)
-
Data Protection Regulation (7)
-
Cookie Collector (6)
-
Cookie Consent (5)
-
Data Protection (5)
-
Implied Consent (5)
-
Cookie Compliance (5)
-
Privacy (5)
-
CNIL (5)
-
GDPR (5)
-
Cookie Stats (4)
-
Chrome (4)
-
ePrivacy (4)
-
French Cookie Compliance (3)
-
Consent (3)
-
Tracking (3)
-
Article29 WP (3)
-
Cookie Law Fines (3)
-
Cookie Law Review (3)
-
Cookie Database (2)
-
Firefox (2)
-
BBC (2)
-
W3C (2)
-
Behavioural Advertising (2)
-
Online Privacy (2)
-
IE10 (2)
-
Right To Be Forgotten (2)
-
EUDATAP (2)
-
Data Protection Act (2)
-
Data Protection Day (2)
-
Data Privacy Day (2)
-
Privacy Impact Assessments (2)
-
Heartbleed (2)
-
Privacy by Design (2)
-
Snowden (2)
-
OBA (2)
-
Garante (2)
-
Digital Governance (2)
-
Cookie Law France (2)
-
Cookie Law Enforcement (2)
-
Safe Harbour (2)
-
Data Privacy (2)
-
cookies (2)
-
ePrivacy Regulation (2)
-
ICC (1)
-
Cookie Crunch (1)
-
Analytics Crunch (1)
-
US Cookie Law (1)
-
Social Media (1)
-
Google Analytics (1)
-
Session Cookies (1)
-
Zombie Cookie (1)
-
Cookie Workshop (1)
-
Cookie Manager (1)
-
Analytics (1)
-
Multi-Lingual (1)
-
Glass (1)
-
Behavioural Profiling (1)
-
Prism (1)
-
Smartphones (1)
-
Site Re-design (1)
-
Infographic (1)
-
Documentary (1)
-
California AB370 (1)
-
Cookie Policy Generator (1)
-
Big Data Ethics (1)
-
Spanish DPA (1)
-
Cookie Notices (1)
-
Safer Internet Day (1)
-
Permission to Personalise (1)
-
OBA Privacy Choices (1)
-
Acxiom (1)
-
Data Brokers (1)
-
Microsoft Azure (1)
-
Safe Harbor (1)
-
Privacy Play (1)
-
Italy DPA (1)
-
Cookie Guidance (1)
-
Cookie Enforcement (1)
-
Gurante (1)
-
ePrivacy Directive (1)
-
e-Privacy (1)
-
Dutch Cookie Law (1)
-
Device Fingerprinting (1)
-
GCHQ (1)
-
Belgacom (1)
-
European Commission (1)
-
Cookie Sweep (1)
-
Cookie Profiles (1)
-
Accountability (1)
-
Cross Device Tracking (1)
-
Online Marketing (1)
-
Cookie Law Italy (1)
-
Enforcement (1)
-
Adsense (1)
-
Doubleclick (1)
-
Cookie Compl (1)
-
Cookie Choices (1)
-
Lotame (1)
-
Cookie Policy (1)
-
Privacy Policy (1)
-
Belgium (1)
-
privacy benchmark (1)
-
Customer Centric Privacy (1)
-
Brexit (1)
-
UK Cookie Law (1)
-
Optanon Features (1)
-
OneTrust (1)