Privacy on the web
LCC has a duty of care of the information that citizens and businesses provide. The Data Protection Act, Human Rights Act and other legislation require that privacy be respected.
1. Cookies
- Users should be advised when cookies are used on a website, what data they contain and what they are used for. This information should be communicated on every entry page to a service that uses cookies.
- Users should have the ability to refuse a cookie.
- The website should still function with cookies switched off.
- Sessions should be set with appropriate expiry times.
2. Encryption
Data protection and privacy is a sensitive issue for Internet users. Encryption of user’s personal data makes sure that if information is intercepted or sent to the wrong person, it cannot be read. Encryption provides confidentiality and trust and is a pre-requisite for on-line transactions.
4. Forms
Where personal information is collected using an online form, the form must contain (or link to a statement) explaining how the data collected via that form will be used. Under the Data Protection Act it is not enough to simply have a 'blanket' statement - you must be specific in each case.
6. P3P Statement
The LCC website has a P3P statement that states that 'Cookies store no personal data and are not used to gather personal information'. See this link for an explanation of P3P: http://www.w3.org/TR/xmldsig-p3p-profile/#sec-Introduction
7. Cookies
The use of cookies on the SCC website is limited to session tracking and trend data collection only. See also: Use of Cookies page