dma How to guide Email and cookies legislation Published by The DMA Email Marketing Council and the IAB Email Marketing Council we are the



Similar documents
A guide to affilinet s tracking technology

Cookies Compliance Advisory

dma White Paper Third-party list rental and third-party lead generation

ESOMAR PRACTICAL GUIDE ON COOKIES JULY 2012

dma White Paper lifecycle marketing Published by legal, data and best practice hub of the DMA Marketing Council we are the

Economic Impact Analysis Research. The Direct Marketing Industry REPORT

IAB Europe Guidance. Five Practical Steps to help companies comply with the E-Privacy Directive

Elo Touch Solutions Privacy Policy

Cookies and consent. The Article 29 Working Party has identified seven types of cookies that are not subject to the consent requirement.

Plus500UK Limited. Statement on Privacy and Cookie Policy

ICC UK Cookie guide. Second edition November international insight and influence.

Privacy Policy GetYou

Adaptive Business Management Systems Privacy Policy

Cookie Policy. Introduction About Cookies

FOUR BLOCK FOUNDATION, INC. PRIVACY POLICY November 6, 2015

PRIVACY POLICY Our privacy policy discloses how we gather and use your data. In short we do not collect sensitive personal information.

Privacy and Electronic Communications Regulations. Guidance on the rules on use of cookies and similar technologies

Privacy Policy/Your California Privacy Rights Last Updated: May 28, 2015 Introduction

How we use cookies on our website

E-commerce and the law Anna Soilleux and Katherine Teasdale May 2014

LIFE INSURANCE ASSOCIATION IRELAND LIMITED MEMBERSHIP TERMS AND CONDITIONS

COOKIES A SIMPLE GUIDE TO WHAT YOU NEED TO DO

PRIVACY POLICY. "Personal Information" comprising:

TOP TIPS TO A TIP TOP

Opinion 04/2012 on Cookie Consent Exemption

1. What information do we collect?

ETHICAL ELECTRIC PRIVACY POLICY. Last Revised: December 15, 2015

USE OF COOKIES & THE EU COOKIE LAW

Privacy Policy for PDV Limited

FitCause Privacy Policy

Privacy policy. 1. Collecting Information We may collect Personal Data about you from a number of sources, including the following:

Privacy Policy. Last Update: January 28, 2016

Leonardo Hotels Group Page 1

Your use of this site is subject to the following privacy policy statement and the web site terms of service.

Public Health England, an executive agency of the Department of Health ("We") are committed to protecting and respecting your privacy.

Office of Fair Trading (OFT) Online Targeting of Advertising and Prices Market Study Response by the Internet Advertising Bureau

Seashore Point Privacy Policy and Terms of Service

DESTINATION MELBOURNE PRIVACY POLICY

Our collection of information

WHAT INFORMATION IS COLLECTED AT MOTOROLA.COM.VN AND/OR MOTOROLA.VN AND HOW IS IT PROCESSED AND USED?

Vyve Broadband Website Privacy Policy. What Information About Me Is Collected and Stored?

NBA Math Hoops Privacy Statement and Children s Privacy Statement Updated October 17, 2013.

Copyright 2011 Smart VA Ltd All Rights Reserved.

PRIVACY NOTICE. Last Updated: March 24, 2015

Privacy Statement. Privacy Practices and Feedback

User tracking: Scope and Implementation eprivacy Directive Article 5(3)

This Privacy Policy has been prepared by DEBTSUPPORTCENTRE (the Company, we or us)

Direct Marketing Rules

Cookies which our online service providers use Updated 12 th May 2015

Overview This Policy discloses the online data collection and usage policies and practices for this Site only, including an explanation of:

How We Use Your Personal Information On An Afinion International Ab And Afion International And Afinion Afion Afion

Cookie Policy. Introduction About Cookies

PRIVACY POLICY. 1. Definitions and Interpretation In this Policy the following terms shall have the following meanings:

PRIVACY POLICY. 1. Definitions and Interpretation In this Policy the following terms shall have the following meanings:

Quorum Privacy Policy

Privacy policy. 1. Collecting Information We may collect Personal Data about you from a number of sources, including the following:

PRIVACY POLICY. 1. Definitions and Interpretation In this Policy the following terms shall have the following meanings:

1. Important Information

Nugg A.S.A.Nugg A.S.P.E.A A.Nugg A.S.P.P.A.Data Security

dma White paper Data security Published by The DMA Marketing Council Best Practice Hub we are the

MIS Privacy Statement. Our Privacy Commitments

ChangeIt Privacy Policy - Canada

IDT Financial Services Limited. Prime Card Privacy Policy

ashburn-it guide to marketing

Mobilebits Inc. Privacy Policy

Zep Inc.: Global Online Privacy Notice

Beasley Broadcast Group, Inc. Privacy Policy

AdvancedMD Online Privacy Statement

dma White Paper metrics and measurement Published by legal, data and best practice hub of the Marketing Council we are the

Cookie Policy. Introduction About Cookies

Please read this Policy carefully. Your continued use of our sites means that you understand and consent to the terms of this Policy.

Privacy Policy Fletcher Building Limited and Fletcher Building (Australia) Pty Ltd

All copyright, trade mark, design rights, patent and other intellectual property rights (registered or unregistered) in the Content belongs to us.

CONSENT TO PROCESSING IN THE UNITED STATES AND ELSEWHERE.

OE Cloud Standard Terms of Service

ANTI-SPAM POLICY JANUARY 2014

DentalTek Privacy Statement

The Myth Of Accurate Conversion Tracking Using Google Analytics

Expanded Frequency Capping

Easitill Website & Ecommerce Solutions

This website is provided by Brooks Macdonald Group plc ( Us, We, Brooks Macdonald ) which is the holding company of:

1. Introduction. 2. Sectoral Areas Affected. 3. Data Security. 4. Data Breach Requirements. 5. Traffic Data

UNILEVER PRIVACY PRINCIPLES UNILEVER PRIVACY POLICY

2. What personal information do we collect and hold?

Marketing Data Protection and Privacy Guidance

Use of cookies. 1. Directive

Table of Contents. Copyright 2011 Synchronous Technologies Inc / GreenRope, All Rights Reserved

1. TYPES OF INFORMATION WE COLLECT.

ADVANCED CABLE COMMUNICATIONS WEBSITE PRIVACY POLICY COLLECTION AND USE OF INFORMATION FROM USERS

If you have any questions about our privacy practices, please refer to the end of this privacy policy for information on how to contact us.

PRIVACY POLICY. Types of Information Collected

Maximum Global Business Online Privacy Statement

Claims Management Regulation. Marketing and Advertising Guidance Note

Software Solutions Digital Marketing Business Services. Marketing. What you need to know

SKoolAide Privacy Policy

Privacy and Electronic Communications Regulations

Web Beacons Guidelines for Notice and Choice

Modern Table Website Privacy Policy

The Guide to: Marketing Analytics"

MRS Guidelines for Online Research. January 2012

Transcription:

dma we are the How to guide Email and cookies legislation Published by The DMA Email Marketing Council and the IAB Email Marketing Council First edition, April 2012

Contents Acknowledgements...2 Introduction...3 1. Background and considerations...4 2. Gaining consent...5 2.1 Tracking consent for new subscribers...5 2.2 Consent via a soft opt-in email permission process...5 2.3 Consent via email...5 2.4 Consent via terms and conditions...6 3. What makes your privacy and cookie policy transparent?...7 4. What are our responsibilities?...8 5. Further Information...9 About the DMA...10 Copyright and disclaimer...11 1

Acknowledgements The DMA and IAB wish to thank the following members for their contribution to this guide: Written by: Tim Roe, Redeye With thanks to: All members of the DMA Email Marketing Council for their contribution and revisions. IAB and all members of the IAB Email Marketing Council. Fedelma Good, Chair of the DMA Cookies Working Party and all members. All rights reserved The Direct Marketing Association (UK) Limited 2012 Internet Advertising Bureau (UK) 2012 No part of this publication may be reproduced without the written permission of The Direct Marketing Association (UK) Limited or the Internet Advertising Bureau (UK) 2

Introduction From 26th May 2011 additional measures came into effect in the UK as part of an update of the Privacy and Electronic Communications (EC Directive) Regulations 2003 (PECR) ( the Regulations ). The revised law covers any technology that stores data on or uses data from a person s terminal device such as computer, laptop, smart phone, web enabled TV, etc. This includes technology that is used to track the activity of a user s terminal online. This paper provides guidance and good practice in relation to email tracking. Virtually all the comment, analysis and guidance so far published about the Regulations in the UK has focused on the use of cookies and similar technology by websites. Although it is not in any way exempted, very little, if at all, has been said about the use of such technology by emails The revised law implementing the revised EU eprivacy Directive - replaces the existing notice and opt out provisions with a requirement to obtain consent for the storing of information or the gaining of access to information stored in the terminal equipment of a subscriber or user having been provided with clear and comprehensive information. Although the new regulations do not mention blank gifs or web beacons, whether or not open tracking in emails falls under the regulations, is still unclear at this point. Regardless of whether a type of tracking is affected or not by the regulations, best practice indicates that information regarding the use of all types of tracking employed on your email campaigns and website is informative and easily accessible by consumers, regardless of why you are communicating with them. Email is often different from a user visiting a website. With email, the user has agreed to receive the marketing email they are being sent. If at the point of recruiting a customer to email communications the marketer gives clear and concise information about the kind of data and how it will be used to serve emails, then it is likely that the recipient will have some expectation of measurement and tracking of their actions. This is known as implied consent. If, however, the data is being used for more intrusive purposes, such as being combined with other data and used in a way that the recipient is unlikely to know about, understand or expect then it will be affected by the new Regulations. This guidance from the DMA and the IAB seeks to provide clear and transparent communications with consumers about the use of cookies and similar technology by email marketing. It also identifies potential approaches to good practice in obtaining informed consent to the use of such technology, as the law now requires. As the email marketing industry is still very much in learning mode on these issues and the Information Commissioner s Office ( ICO ) has not yet published any guidance in this area, this How to Guide is not set in stone and will evolve over time. This document does not constitute legal advice, but is informed guidance. 3

1. Background and considerations For a number of years, some marketers have used methods of one sort or another to track their email campaigns providing revenue and other types of related information (beyond the last click). Methods used include third party analytics cookies (such as Google Analytics) and first party cookies directly served from the website domain. As with any sort of tracking technologies, these may fall under the new regulations and if so, marketers are under obligation to comply with the new regulations. This best practice guidance is focused on email marketers who use any form of tracking in the course of their email marketing. It is incumbent on email marketers to explain what email tracking is, how it s used, and how it impacts recipients. This level of transparency will ultimately build trust in brands that use email marketing. For instance, if you are using cookies in your email marketing, their description and use should be detailed in your cookie policy, easily found on your website, or linked through from the mechanism you are using to gain consent. Equally, any other technology used to track what a recipient does with email needs to be described. 4

2. Gaining consent For your existing subscriber list, if the use to which the tracking in email goes beyond that which an average consumer would expect, a form of consent will be required by the new regulations. The only exception to this, would be if the tracking were strictly necessary to provide a service requested by the user,, such as an Abandoned Basket email sent following a user s visit to an e-commerce website. Below are some suggested approaches to obtaining consent to the use of tracking. These are examples only. How you communicate with your customers and prospects is core to your branding so the choice of language and words should be yours. The overarching intention should be to use easy to understand language that is simple, concise and clear and to obtain consent where this is required by the Regulations. 2.1 Tracking consent for new subscribers One of the best ways to gain permission to use tracking is in the email opt-in process, One possible option might be as follows: We use technology to help ensure we send you what you want, and stop sending you what you don t want. Click here to find out more. Please tick this box to register for our newsletter, allowing us to send you relevant offers and information. When potential subscribers click on the click here to find out more they ll be taken to a page which explains what tracking is used with your campaigns, how it is used, and how it impacts on recipients including how long it lasts and how the subscriber can stop receiving the newsletter if they change their mind. 2.2 Consent via a soft opt-in email permission process Many websites use the soft opt-in process to secure email marketing permission. This process can be used when the email address is obtained during a sale of goods or services. Although this is an effective way of gaining marketable email addresses, when gaining consent for cookies or similar technologies, a positive action is required. An example of how this would work is: We would like to send you emails from time to time with offers and other relevant information. If you don t want to receive these emails from us, please tick this box. We use cookies or similar technologies to help us ensure we only send you what you want and also to improve your online experience: click here for further details. By submitting this form you are consenting to the use of this technology in this service. 2.3 Consent via email Email marketers are under an obligation to educate their existing recipients about the tracking used in this process and obtain consent. This information need not be confined to cookies or similar technologies used in emails, but can also include other uses throughout the web. The important point to remember is that clear information should be provided about any technology you are using and consent obtained. One method of providing the information for cookies or similar technologies is to use a statement such as the one below, at the head of the email or in the pre-header. Once the link is clicked, the recipient/subscriber is presented with information on how cookies are used. We may use cookies or similar technologies to help us send you relevant offers and to improve your online experience. By agreeing to receive emails from us you are agreeing to the use of such technologies: click to find out more 5

2.4 Consent via terms and conditions The terms and conditions of the sale, or registration, is another good place to gain consent for the use of tracking. By clicking [the Accept or Register] button below you are agreeing to our terms and conditions, which includes information on how we use cookies or similar technologies which helps us send you relevant offers and improves your online experience. Click here to find out more. When the potential subscriber clicks on the click here to find out more they must be taken to a page which explains what cookies or similar technologies are being used, how it is used, and how it impacts on the recipient. This is usually your Privacy and Cookie policy which should have a separate, highly visible link which you may want to position on your website and email header. 6

3. What makes your privacy and cookie policy transparent? Produce effective communication material: For the material you make available to consumers to be effective it must be: Easy to understand plain English where possible; Honest and accurate users mustn t be misled in any way and information should not seek to deliberately mislead; and Helpful and empowering the aim is to put the consumer in control and provide them with the information and means to achieve this. Information presented must satisfy this requirement. Include relevant subject matter and headings These examples are illustrative only. What are Cookies? Example only description: Cookies are small, usually randomly encoded, text files that help you navigate through a website. They are generated on the sites that you visit as well as by third-parties that websites work with to manage key elements of their business (user functionality and advertising, for instance). In most cases they do not involve or use personal information in any way. They are extensively used online and have become part of the fabric and make-up of what has made the internet work so effectively for consumers and businesses. Without cookies many areas of functionality for example, user logins, shopping baskets and other customisation features will not work. Is it just about cookies? Describe other technologies that are used with email marketing. Examples might include: oo Flash Locally Stored Objects (eg Flash cookies) these follow the same principle as normal standard cookies in the respect that they allow information to be stored on a user s machine. oo Transparent GIF or web beacons- these mechanisms can be used to deliver a cookie to your browser. They can also be used in email marketing to identify to the sender if an email has been opened. Controlling Cookies Describe how it s possible to prevent, delete and control cookies on your computer by using the relevant settings within your browser options etc. Explain how this may affect the overall experience with the website. 7

4. What are our responsibilities? Describe the need to provide transparency to consumers and signpost to the revised law. What is our policy as a business? Explain to consumers what your approach is to providing transparency and protecting privacy. How do we use cookies on our website? Describe first and third party cookie usage within your advertising, analytics activities etc. Describe the affiliate marketing model briefly, being clear about advertising and sales revenues. It is important to keep this information easy-to-understand for the average internet user. Information about the cookies used There are many examples available on the internet to provide assistance on how this can best be formatted. You might use a simple table providing clear information including how long the cookie lasts. Something like: Cookie Name XYZ-adv Web beacon or clear gif (web) Web beacon or clear gif (email) Purpose, characteristics and privacy This is a first party cookie which is used to ensure that we are able to provide users with / track advertising etc The information stored does not include any personal data. It includes anonymous identifiers. This is a blank image that can deliver a tracking cookie to a web browser This blank image tells the sender of the email that the recipient has opened the email. How to delete and prevent Describe how the cookie can be deleted, blocked and provide any opt out functionality (e.g. links) If you have blocked cookies, the web beacon will not deliver the cookie. Images can be disabled in the email program. In most cases, open tracking is disabled by default in the email program: you would need to enable images to allow this type of tracking to work Third party solutions may need to be summarised, perhaps with a short section for each provider, eg: Name of Provider: Example X Description of Cookies: Example X tags are used by our advertisers to measure the effectiveness of their online marketing campaigns and to provide anonymous transaction data. Privacy / deleting cookies: You can read more about ExampleX here. 8

5. Further Information Keep up to date with evolving developments regarding cookie compliance via these links: DMA - http://www.dma.org.uk/toolkit/countdown-cookie-compliance IAB - http://www.iabuk.net/blog/tackling-the-eprivacy-conundrum IAB Consumer Transparency Framework - http://www.iabuk.net/about/press/archive/iab-amc-publishesconsumer-transparency-framework DMA How to guide 10 step overview guide to managing cookies - http://www.dma.org.uk/sites/default/ files/pdf/cookies/10_step_cookie_guide.pdf DMA How to guide mobile and cookies legislation - http://www.dma.org.uk/toolkit/how-guide-mobile-andcookies-legislation The ICO s latest guidance on cookies - http://www.ico.gov.uk/for_organisations/privacy_and_electronic_ communications/the_guide/cookies.aspx 9

About the DMA The Direct Marketing Association (DMA) is Europe s largest professional body representing the direct marketing industry. With a large in-house team of specialists offering everything from free legal advice and government lobbying on direct marketing issues to research papers and best practice, it is always at the forefront of developments in the industry. The DMA protects the direct marketing industry and consumers. It promotes the highest standards through selfregulation and lobbies against over-regulation. The DM Code of Practice sits at the heart of everything we do and all members are required to adhere to it. It sets out the industry s standards of ethical conduct and best practice. Our 16 DMA Councils/Board Committees cover the whole marketing spectrum from the digital world of social media and mobile marketing to the real world channels of door drops and inserts. The Councils are made up of DMA members and regularly produce best practice and how to guides for our members. We also have a packed calendar of conferences, workshops and discussions on the latest topics and best practice, and 80% of them are free for members and their staff. As the industry moves on so do we, which is why we ve recently launched a number of new services for our members a VAT helpline, a Social Media Helpdesk and an IP Protection Service. Visit www.dma.org.uk regularly to keep up to date with all our services. 10

About the IAB The Internet Advertising Bureau (IAB) is the trade association for digital advertising. With over 700 members, it s run for the leading media owners and agencies in the UK internet industry. Online is an exciting and fast-growing medium and our job at the IAB is to work with members to ensure marketers can identify the best role for online and the emerging mobile market, helping them engage their customers and build their brands. Through the dissemination of research and the organisation of regular events, we aim to put digital on the agenda of every marketer in the UK, acting as an authoritative and objective source for all internet advertising issues whilst promoting industry-wide best practice. Visit www.iabuk.net for more information. 11

Copyright and disclaimer The Email and cookies legislation how to guide is published by The Direct Marketing Association (UK) Ltd and the Internet Advertising Bureau UK Copyright Direct Marketing Association Copyright Internet Advertising Bureau. All rights reserved. No part of this publication may be reproduced, copied or transmitted in any form or by any means, or stored in a retrieval system of any nature, without the prior permission of the DMA (UK) Ltd and IAB UK except as permitted by the provisions of the Copyright, Designs and Patents Act 1988 and related legislation. Application for permission to reproduce all or part of the Copyright material shall be made to the DMA (UK) Ltd, DMA House, 70 Margaret Street, London, W1W 8SS. Although the greatest care has been taken in the preparation and compilation of the Email and cookies legislation how to guide, no liability or responsibility of any kind (to extent permitted by law), including responsibility for negligence is accepted by the DMA, its servants or agents. All information gathered is believed correct at April 2012. All corrections should be sent to the DMA for future editions. 12

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information