Full Disclosure
Charles Lindsey
ukcrypto at chiark.greenend.org.uk
Mon, 28 Apr 2008 11:31:56 +0100
On Sun, 27 Apr 2008 22:29:31 +0100, Joel Harrison
<joeldharrison@googlemail.com> wrote:
> Consider PECR reg. 6. In your example, in order for the web server's
> retrieval of the webwise cookie to be lawful, the web server would
> have to provide "clear and comprehensive information about the
> purposes of the ... access to ... [the webwise cookie]". So, the web
> server would need to state clearly in its privacy policy that one of
> the purposes for which it accesses cookies is to retrieve data placed
> there by ISPs participating in the Phorm system. You may think that
> the chances of anyone owning up to this sort of practice are small.
Eh? Web servers don't "retrieve" cookies". They are sent automatically by
browsers, and it would require a specific action by the website to detect
and ignore those cookies which could be identified as "webwise".
In any case, this particular web server is in Peru, and what does it now
or care about PECR?
--
Charles H. Lindsey ---------At Home, doing my own thing------------------------
Tel: +44 161 436 6131
Web: http://www.cs.man.ac.uk/~chl
Email: chl@clerew.man.ac.uk Snail: 5 Clerewood Ave, CHEADLE, SK8 3JU, U.K.
PGP: 2C15F1A9 Fingerprint: 73 6D C2 51 93 A0 01 E7 65 E8 64 7E 14 A4 AB A5