31 comments

[ 2.2 ms ] story [ 87.6 ms ] thread
I get no cookie warning - can you explain what you thought I should see?
"We use cookies to ensure that we give you the best experience on our website. We also use cookies to ensure we show you advertising that is relevant to you. If you continue without changing your settings, we'll assume that you are happy to receive all cookies on the BBC website. However, if you would like to, you can change your cookie settings at any time."
I'm in the US, this is what I got. However I only got it once. Despite not clicking on anything, when I returned to BBC the message was not there.
It's a banner at the top of the page explaining cookies and if you hit continue on it you acknowledge BBC will continue to use them.
Are you in the UK? Maybe they don't use cookies for uk users as we aren't shown adverts since we pay via the license fee.
I'm in the UK - I still get the message, but no mention of advertising.

"We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we'll assume that you are happy to receive all cookies on the BBC website. However, if you would like to, you can change your cookie settings at any time."

that would make some sense, but there would still be cookies for tracking what you see...
Follow up, I just saw the cookie disclaimer the other day and I'm in the uk
I don't get the warning either in the USA, maybe because I have noscript.
I think if you're going to dramatically alter your browser, you should probably avoid commenting on page quirks or features.

"When I turn off my screen, the BBC's website is all black! Very bad UX!"

This is going to get quite annoying, fairly fast, for those of us who browse on-and-off in incognito mode.
This in my face forcing me to read and think when all I want is the Scottish news is an impertinence.

Do we really need this awful constant nannying to death that is such a feature of modern life?

I have cookies disabled by default. I don't want to see this alert every time I visit the BBC website. So I just created a quick greasemonkey script which removes it with a simple:

  el = document.getElementById('bbccookies');
  if( el ) el.style.display='none';
(comment deleted)
I thought you had to get explicit opt in? Simply hitting the page once and refreshing sets the cookie so you will never see the message again doesn't sound like explicit opt in to me?
These laws make me doubt the future of the industry in Europe. I respect users' privacy and all - but this is atrocious for user experience.
Ironically, they use a cookie to store your preference regarding cookies.
As I understand it, most of the ad networks do the same thing in their opt-outs. You're not opting out of being cookied. You're just opting out of "personalized" advertising. Most non-technical users who "don't want cookies on my computer" would probably dislike a truly cookie-less web.
sigh

This is absurd. Do the legislators in GB really have nothing better to be spending their time on?

There are some pretty massive businesses built on tracking cookies. Clearly they're not worthless or irrelevant.
I don't mean the concept of cookies, I mean this sudden rush to legislate them. I don't want to be bothered every time I visit a new website for them to ask if they can use cookies or not. It's a pain in the ass and it's a UX nightmare.
I agree that it's a questionable law, but you said "have nothing better to be spending their time on" and I'm just saying that its not an inherently wasteful thing to spend time being concerned about.
When you outlaw cookies, then only the outlaws will have cookies. I tend to hold the belief that consumer protectionism laws don't really protect consumers, in that it lulls consumers into an inattentive stupor when it comes to things they best educate themselves on instead.
So I thought the EU directive 2009/136/EC only affected cross-site tracking cookies, the type of cookies that AD networks use. Is this not the case or it’s just BBC that goes the extra mile?

Anyway, it seems ridiculous to ask for consent to use basic cookies (e.g. to remember the preferred language or the region to use in weather widget) on every single website hosted in EU.

Optimally, browsers should just send your preference like they do with DNT headers:

    Cookie-Preference: (None|Essential|All)
Something in that manner — I didn’t really think it through.

Actually, wasn’t P3P supposed to be used for something like that? Maybe it’s time to reinvent it… :)

From the Wikipedia page about P3P:

> As an example, a user may store in the browser preferences that information about their browsing habits should not be collected. If the policy of a Website states that a cookie is used for this purpose, the browser automatically rejects the cookie.

That’s even better, because you don’t have to rely on the site to follow law. If something like P3P was widely used by all the major sites, you could set your browser to reject all cookies that don’t include necessary privacy policy along with them. Persistent, tracking cookies could be rejected by default, unless signed by a trusted agency, that would make sure that necessary policies are followed (and it’s not just rogue site that wants to infect you with their cookies). That way AD networks could continue to work seamlessly.

P3P might have had some problems, but the core ideas appear to be sound.