Try a UK site. It will alert you that they may collect cookies. Check out dailymirror
example here: http://cl.ly/image/010734062s1x
British Telecom implements a very clever solution: http://www.bt.com/
The dialog goes away after a certain amount of time, assuming user accepted the policy.
Users can then manage their preferences.
Is this required by law?
Come to the Summit! I & Stefan & Autumn will be doing a talk about this specifically!
Plus search for "EU Data Privacy directive" in the community and you'll find a much longer thread on this topic.
Sherry, the answer to your question is yes.
It is important to highlight it does not matter where the company and/or website is located.
The law applies to the jurisdiction where the recipient is located.
Please review the following article for details
Here is what we have. It seems that sections 2 & 3 cover it but it's a lot less in depth than what I've read here...
Use of Data
Some of our site's registration forms require users to give us contact information. Your contact information may be used to confirm your registration, contact you if necessary and occasionally send you information about our company. You may choose to opt out of future mailings. Directions on how to opt out are provided in all email correspondence.
We do not sell to or share our customer names, addresses, or other information with third parties.
Registration/Contact information will not be used for any other purposes unless pursuant to legal process or law enforcement.
Non-Personally Identifiable Information
We may collect and aggregate non-personally identifiable information, such as which pages were visited, the type of browser you are using, and the domain name of your Internet service provider. We use the non-personally identifiable information we collect to improve our services.
This site contains links to other sites. EagleTM is not responsible for the privacy practices or the content of such Web sites.
This site has appropriate security measures in place to protect against unauthorized access, loss, misuse, and alteration of the information stored therein.
The "cookies" section is appropriate if users must acknowledge and confirm the acceptance of all terms and conditions, usually through a popup, checkbox or a yes/no dropdown list.
That would be an opt-in, complying with the legislation.