Cookies are pieces of technology used on most websites to monitor a website visitor’s activities e.g., helping a visitor log into a website, tracking visitors browsing activity and/or remembering items added to a shopping basket.
It is legal to use cookies in the UK, however if using cookies you must provide specific information to a website visitor including: (1) what cookies are set; (2) the purpose for using the cookies; (3) whether any third-party cookies are used; and (4) the duration for which cookies are set on a device. Additionally, unless one of the limited exemptions apply, you must obtain consent from a website visitor before placing most cookies on their device and the website visitor must be able to change their cookie preferences at any time.
In practice, most companies seek to provide this information and comply with their obligations under data protection law by implementing: (1) a cookie consent banner that appears whenever an individual visits a website, which enables a website visitor to set their cookie preferences and obtain the relevant information about each cookie; (2) a Cookie Policy, which includes the detail as set out above; and (3) a ‘Manage Cookie Preferences’ link somewhere on the website to enable a website visitor to change their cookie preferences at any time.
Learn More: UK Founder Series: Compliance Matters