I wonder what the law says on *how* this should be implemented. Therefore I wonder if this would comply:
- You write a privacy policy or terms and conditions page on the website, which includes the fact that you use cookies.
- During sign up, you refer them to the privacy document, as in..."by joining you agree with the terms and conditions"
- If needed, you send a one-time email to existing users to agree with the privacy policy
- For anonymous users, you simple make sure that a privacy policy is linked to on every page.
I think the last part (anonymous access) is where my plan falls apart. Yet I merely want to challenge the idea that we need an in-your-face permission dialog. The point is to ask permission, but how you ask for it is debatable (I think).
I wonder what the law says on *how* this should be implemented. Therefore I wonder if this would comply:
- You write a privacy policy or terms and conditions page on the website, which includes the fact that you use cookies.
- During sign up, you refer them to the privacy document, as in..."by joining you agree with the terms and conditions"
- If needed, you send a one-time email to existing users to agree with the privacy policy
- For anonymous users, you simple make sure that a privacy policy is linked to on every page.
I think the last part (anonymous access) is where my plan falls apart. Yet I merely want to challenge the idea that we need an in-your-face permission dialog. The point is to ask permission, but how you ask for it is debatable (I think).