This topic has come about from a discussion on a different thread.
Please look at this discussion regarding the European Electronic Communications Framework
I'm currently looking at what needs to be done in Joomla to allow for compliance with the European Electronic Communications Framework that has to be implemented by 26th May 2012 in the UK.This is of great concern since it can affect everyone with a potential fine of up to £500,000 for a serious breach.
Cookies or similar devices must not be used unless the subscriber or user of the relevant terminal equipment:
(a) is provided with clear and comprehensive information about the purposes of the storage of, or access to, that information; and
(b) has given his or her consent.
The two exceptions to this rule are:
•for the sole purpose of carrying out or facilitating the transmission of a communication over an electronic communications network; or
•where such storage or access is strictly necessary to provide an information society service requested by the subscriber or user.
The Information Commissioner's Office have released guidance for anyone interested:
ICO Cookie Guidance
I will be trying to do as much work as I can on this and welcome any ideas or help from other people since I can only do this around my forced labour to pay the bills.
Currently Joomla makes use of session variables and cookies in various ways in it's core distribution. All session variables and cookies have to be identified and the end user be given the ability to opt-in to use these session variables and/or cookies before any session variable or cookie is set on the client machine or server.To this end Joomla needs to have the ability to work without session variables and cookies being set until the end user has given their consent.