[wp-trac] [WordPress Trac] #47794: EuGH ruling - opt-in obligation for cookies and social media

Tue Dec 17 06:58:46 UTC 2019

#47794: EuGH ruling - opt-in obligation for cookies and social media
-------------------------+-----------------------------
 Reporter:  DjPD         |       Owner:  (none)
     Type:  enhancement  |      Status:  new
 Priority:  normal       |   Milestone:  Future Release
Component:  Privacy      |     Version:  4.9.6
 Severity:  normal       |  Resolution:
 Keywords:               |     Focuses:  javascript
-------------------------+-----------------------------
Changes (by garrett-eclipse):

 * focuses:   => javascript
 * severity:  critical => normal
 * version:  5.2.2 => 4.9.6
 * milestone:  Awaiting Review => Future Release
 * type:  defect (bug) => enhancement

Old description:

> Hi.
> I have a very important question.
> The European Court of Justice has ruled that websites are now responsible
> for all internal and external cookies or affiliations (social media).
>
> My question is whether WordPress now incorporates a management of
> cookies, making it easier for both WordPressadmin and website visitors to
> individually allow or block each cookie.
>
> I think it will be very important that this feature comes from WordPress
> itself. Otherwise, every plugin will eventually have its own function,
> which makes WordPress just more vulnerable and bigger.
> It would be best if Wordpress asks each plugin developer which cookies
> are collected and the system Wordpress can then recognize and manage.
> In the privacy policy you can then write an explanation for each cookie
> or function and also insert a shortcut via shortcode. That would be the
> best and easiest way. Then a cookie-consents and actually everything
> should be done.
>
> In addition, it also comes that an attractive core element "Embed
> function" comes directly from Wordpress. And for that you need an opt-in
> now.
> This embed function must be deactivated until the visitor has specified
> that he wants to see it. It would be good if the first time a window is
> loaded, that the user has not yet allowed the display of this embed and
> that he can do it now in the privacy policy or in the Consents window.
>
> It seems very important that people react very quickly.
> The use of such functions is now illegal after this judgment.
>
> Quelle:
> https://datenschutz-generator.de/eugh-urteil-like-button-cookie-opt-in-
> abmahnbarkeit/ (german)
>
> https://translate.google.de/translate?hl=de&tab=wT&authuser=0&sl=de&tl=en&u=https%3A%2F
> %2Fdatenschutz-generator.de%2Feugh-urteil-like-button-cookie-opt-in-
> abmahnbarkeit%2F (English Google translate)

New description:

 Hi.
 I have a very important question.
 The European Court of Justice has ruled that websites are now responsible
 for all internal and external cookies or affiliations (social media).

 My question is whether WordPress now incorporates a management of cookies,
 making it easier for both WordPressadmin and website visitors to
 individually allow or block each cookie.

 I think it will be very important that this feature comes from WordPress
 itself. Otherwise, every plugin will eventually have its own function,
 which makes WordPress just more vulnerable and bigger.
 It would be best if WordPress asks each plugin developer which cookies are
 collected and the system Wordpress can then recognize and manage.
 In the privacy policy you can then write an explanation for each cookie or
 function and also insert a shortcut via shortcode. That would be the best
 and easiest way. Then a cookie-consents and actually everything should be
 done.

 In addition, it also comes that an attractive core element "Embed
 function" comes directly from Wordpress. And for that you need an opt-in
 now.
 This embed function must be deactivated until the visitor has specified
 that he wants to see it. It would be good if the first time a window is
 loaded, that the user has not yet allowed the display of this embed and
 that he can do it now in the privacy policy or in the Consents window.

 It seems very important that people react very quickly.
 The use of such functions is now illegal after this judgment.

 Quelle:
 https://datenschutz-generator.de/eugh-urteil-like-button-cookie-opt-in-
 abmahnbarkeit/ (german)

 https://translate.google.de/translate?hl=de&tab=wT&authuser=0&sl=de&tl=en&u=https%3A%2F
 %2Fdatenschutz-generator.de%2Feugh-urteil-like-button-cookie-opt-in-
 abmahnbarkeit%2F (English Google translate)

--

Comment:

 Quick Update

 The Consent API is currently being worked on here -
 https://github.com/rlankhorst/wp-consent-level-api
 *Feel free to play along ;)

 The original Feature plugin discussion was posted to Make Core here;
 https://make.wordpress.org/core/2019/08/07/feature-plugin-discussion-a
 -consent-and-logging-mechanism-for-user-privacy/

 Discussions have occurred in the #core-privacy office hours, their Slack
 logs can be found here;
 https://wordpress.slack.com/archives/C9695RJBW

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/47794#comment:5>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform