The Article 29 Working Party ‒ the European Union’s data protection advisory body ‒ has issued guidance on how to comply with the EU’s requirement that websites obtain users’ content before placing cookies on their computers. The ePrivacy Directive (2002/58/EC, as amended by 2009/136/EC) prohibits the use of most cookies unless a website user consents. The 2009 amendment to the Directive has caused concern and confusion among website operators on how to obtain adequate consent. Accordingly, the Working Party has published several documents attempting to clarify aspects of the ePrivacy Directive. Each time, though, the burden on website operators seems to grow.
- How-to guide How-to guide: How to develop, implement and maintain a US information and data security compliance program (USA)
- How-to guide How-to guide: How to determine and apply relevant US privacy laws to your organization (USA)
- How-to guide How-to guide: How to establish a valid lawful basis for processing personal data under the GDPR (UK)