Feeds

Almost entire EU now violating Brussels cookie privacy law

Steelie Neelie threatens 'necessary measures'

Choosing a cloud hosting partner with confidence

The deadline for the implementation of a European privacy law on cookies passed with a whimper at midnight last night, after just two Member States issued a full notification to Brussels.

Meanwhile, 19 of the 27-bloc countries that make up the European Union ignored the 25 May deadline on implementing the full, or indeed partial, set of measures laid out in the revised legislation for the e-Privacy Directive.

At the end of yesterday, only Estonia and Denmark had notified the Commission, with officials in those states confirming that they had transposed all of the EC measures on internet cookies into their national law.

The UK, France, Slovenia, Luxembourg, Latvia and Lithuania all offered the Commission partial notifications, even though Brussels' officials had made it clear that implementation of all the measures was required from each member state.

Finland is also expected to implement all parts of the 2009 legislation. But it hasn't notified the EC yet.

The European privacy law came into force this morning requiring websites within the EU to obtain a visitor's consent to install a cookie in their browser. But readers would be forgiven for thinking little has changed online today.

Indeed, the UK government effectively freed up web owners in Britain from the burden of implementing the changes for one year, after the Information Commissioner, Christopher Graham – whose office is tasked with enforcing the law – confirmed yesterday that no action would be immediately taken against companies that ignored the rules.

"We're giving businesses and organisations up to one year to get their house in order," he said yesterday.

The Register asked Brussels spokesman Jonathan Todd to explain what the lack of interest in the privacy law meant for the EU.

"That a large number of Member States have failed to fulfil their obligations to meet a deadline that they themselves had set," he said.

"For its part, the Commission may open infringement proceedings against the Member States in question as a matter of urgency."

He pointed out that Europe's digital agenda Commissioner Neelie Kroes said earlier this week that she would "take the measures necessary to fix that situation vis-à-vis Member States and telecoms operators".

But the warning appeared to have been largely ignored, leaving many website businesses perplexed by the new rules.

As for the detail missing from the UK's submission to the Commission, Todd told us that "they have notified everything except the law giving the necessary new powers to Ofcom – we know that they have adopted this law but they have not yet notified it (we presume they will imminently)."

Blighty's communications minister Ed Vaizey said earlier this week that his government department was talking to browser vendors to work out a "technical solution" via a browser setting.

Some privacy advocates claimed that Vaizey was appeasing advertisers by shying away from implementing an effective mechanism that would allow web surfers to consent to their online movements being tracked. ®

Beginner's guide to SSL certificates

More from The Register

next story
I'll be back (and forward): Hollywood's time travel tribulations
Quick, call the Time Cops to sort out this paradox!
Musicians sue UK.gov over 'zero pay' copyright fix
Everyone else in Europe compensates us - why can't you?
Megaupload overlord Kim Dotcom: The US HAS RADICALISED ME!
Now my lawyers have bailed 'cos I'm 'OFFICIALLY' BROKE
MI6 oversight report on Lee Rigby murder: US web giants offer 'safe haven for TERRORISM'
PM urged to 'prioritise issue' after Facebook hindsight find
BT said to have pulled patent-infringing boxes from DSL network
Take your license demand and stick it in your ASSIA
Right to be forgotten should apply to Google.com too: EU
And hey - no need to tell the website you've de-listed. That'll make it easier ...
prev story

Whitepapers

Seattle children’s accelerates Citrix login times by 500% with cross-tier insight
Seattle Children’s is a leading research hospital with a large and growing Citrix XenDesktop deployment. See how they used ExtraHop to accelerate launch times.
5 critical considerations for enterprise cloud backup
Key considerations when evaluating cloud backup solutions to ensure adequate protection security and availability of enterprise data.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.