With a disturbing increase in the number of data breaches, internet users have become more concerned about their online privacy than ever before. If we are a website or WordPress blog owner then it is essential to know that as per the European Union legislation we need to add cookie consent notice to our site/blog to let the users know that we are using cookies. Before going to the step by step process to add this consent let us first understand a bit about cookies and the law governing cookie consent.
What are cookies?
Cookies are small text files stored on a person’s computer holding information specific to that person. This is downloaded to our system when we visit a website. These cookies help the website owners provide a customized user experience. Let us see a simple example of how cookies are helping websites to optimize their content delivery.
Let us browse a website that serves different geographies and multiple languages. When we visit the site for the first time we set our location and language preference. Our browser stores these values as cookies. Next time we visit the same site instead of asking us for the location and language preference the site reads the previously stored cookie value and renders the content as per the available cookie data. Thus cookies help site owners to render customized versions of the site much easier.
Cookies were first designed by Lou Montulli in 1994 when he was working for the company Netscape. The original purpose of its design was to identify if a user has visited their site before.
What are the different types of cookies?
Session Cookies: Session cookies help websites memorizes the online activity of each user. For example, when we are shopping online we can browse different products and categories and add them to cart and then check out any time. All these items that we have added to the cart remain active in the final check out page. Cookies control all such behaviors. So basically without Session cookies internet browsing would be a completely different experience. These cookies remain active only until we stay on the website. These cookies expire post the browser window closure.
Persistent Cookies: These types of cookies are stored on the hard disk of our computer. For example, the language and location preference of a user is required every time he/she visits the website. So these cookies remain even after exiting the browser.
Third-Party Cookies: Also known as tracking cookies these are a bit on the shady area of privacy. These cookies actually collect user data based on our online behavior. Advertisers mainly use this to track the location, age, gender, etc of a customer. Based on these information ad programs can render targeted ads to each customer.
What is the EU Cookie Legislation?
With the intent to protect the online privacy of citizens, this initially began as a directive from the European Union. As per the new privacy Directive, the websites based on European Union or targeting audience in the European Union need to inform the users about cookies. As per the law, the website owners need to inform the visitors about the following facts.
- Why we use cookies?
- What is the purpose of the cookie? ( performance enhancement or functionality implementation)
- The details of the type of cookies on our website.
- Who is in control of the cookie-related information?
- The use of the cookie is only intended for the stated purpose.
- How users can withdraw consent to allow cookies?.
How to add cookie consent notice to the WordPress website?
Step1: Install and activate Cookie Notice for GDPR WordPress plugin.
Step2: Go to the plugin settings under Settings => Cookie Notice
The first option here is to enter a suitable text for our cookie notice consent. I am using the default text here for demo purposes. Next, we have to provide the button text.
The next option is to link the consent notice to our site’s privacy policy. It is always necessary for our site to have a privacy policy. This creates the impression that our site operates under certain guidelines and hence increases our credibility. We can link our privacy policy page on this cookie bar notice so that our readers can have a detailed understanding of our policies. For this just check the Enable privacy policy link and provide our privacy policy page link in the below textbox. Select the Link target as _blank to open our privacy policy page on a new browser window.
Step3: We also have options to allow the users to refuse the cookies and use our site.
I am not checking this option here as without cookies this site may not function properly. If we enable this option then we need to add each of our cookies script tags to the Script blocking section. So if the user rejects the use of cookies these scripts such as Google Analytics will not be loaded. We should be careful with these options and have to do proper testing to ensure that our site functionalities do not break. I strongly advise newbie bloggers against enabling this option.
Step4: The next set of options is for designing the color, position, and style of the cookie bar and buttons within it.
Finalize these options as per our site layout and click the Save Changes button at the bottom to enable the cookie bar.
Let us now go to the blog and see the cookie notice bar in action on the bottom part of our site.
If we click the Ok button the cookie bar disappears after marking our consent. Clicking on the Privacy policy link will take us to our site’s privacy policy page.
Thus in a few simple steps, we have added a cookie consent notice bar to our website.
Nice article Akhil. The new EU legislation regarding cookie consent has really become trouble for nontechnical site owners like me. I didnt expect that adding cookie consent to WordPress was this easy. As always WordPress rocks with its plugin support that makes our life less painful. I do have a question regarding the new law. Is this mandatory for my website that is hosted in the USA?
Glad that you found this blog post useful. As per the European Union(EU) cookie compliance law, if your website gets visitors from the EU geography then you should incorporate the cookie notice even if your site is hosted outside the EU. I believe this statement answers your query.