In one sentence...

It is currently required by UK and International law to advise your website visitors that they are being tracked with cookies, what information is collected and in which ways that information is being used.

In a bit more detail...

As a response to the E-Privacy Directive of 2009 the UK made amendments to the Data Protection Act and The Privacy and Electronic Communications Regulations 2011.

These amendments prompted the Information Commissioner's Office (ICO) to release guidance in 2011 that websites must ask visitors permission prior to using cookies. In 2012 the ICO released new watered down guidance stating that implied consent is acceptable although it must be made clear in a cookie/ privacy policy.

The current status is therefore that there is no requirement to explicitly "opt in" - presuming it is made clear, continued browsing counts as consent.

For example,something at the top or bottom of web pages that says "We use cookies to track your browsing and optimise our website and marketing efforts. Further info here in our privacy policy"

CANDDi now also offers a link to that you can add to your website to opt out of tracking (see how to set this up in CANDDi).

For ideas of what you should include in your own cookie/privacy policy, please see:

Our cookie info:

Our privacy policy:

Conscious Solutions (our lovely legal client with an excellent example):




Both recommended by clients, these guys offer free privacy policies!

Have more questions? Submit a request
Was this article helpful?
Thank you!