We would love to hear from you. Call us anytime on +44 (0)1491 260140


Website information and procedures: transactional requirements

In yesterday's post, I considered the basic legal information that most commercial websites are required by English law to disclose. Many of these basic disclosure requirements are contained in the Electronic Commerce Regulations (EC Directive) Regulations 2002 (the “Ecommerce Regulations”). The Ecommerce Regulations also contain a number of (widely ignored) provisions that apply where contracts are entered into online. This post considers those provisions.

Scraping, data mining and data harvesting

Many websites incorporate data obtained from other websites. It is sometimes thought that, where the data obtained is not protected by copyright (e.g. data consisting of postal addresses arranged alphabetically) there are no legal problems. This is however a mistake: the collection and re-use of such data can present significant legal risks.

Email footers and the law

In deciding what to include in your standard email footers, there are two kinds of legal issue: what must be included; and what inclusions are desirable. There are various distinct statutory requirements. The main kinds of potentially desirable inclusions are email disclaimers and confidentiality notices.

Content: kinds of illegality

The publication of website content – whether textual, audio, video, or other content – can be unlawful in two main ways. It can breach the criminal law; and it can give rise to civil liability.Breaches of the criminal law may result in prosecution, and a successful prosecution may lead to a fine or even imprisonment.

International transfers of personal data

Website operators commonly transfer the personal data of their users overseas. However, the UK's Data Protection Act 1998 expressly restricts certain transfers of personal data outside the European Economic Area : “Personal data shall not be transferred to a country or territory outside the European Economic Area unless that country or territory ensures an adequate level of protection for the rights and freedoms of data subjects in relation to the processing of personal data”.