* French data protection authority declares e-mail tracking system illegal You may have read the recent Gearhead columns in Network World (see links below) about DidTheyReadIt, a service that tracks whether e-mail you send is opened. This tracking system uses Web “bugs,” tiny images loaded by HTML content that are tagged with serial numbers to identify the intended target.Now whatever you might think of this technique and its intrusiveness and ethicality, a bigger issue has emerged. It turns out that under French law, this technique is actually illegal.According to a report in a European privacy newsletter called EDRI-GRAM the French data protection authority, CNIL, has declared DidTheyReadIt illegal.The basis of CNIL’s decision is the French privacy legislation of 1978, which applies because the recipients do not have a choice whether to accept or refuse the sending of information back to the message originator using DidTheyReadIt and because they aren’t informed after the fact. CNIL further judged that because the information is “detailed” the data is sensitive, which also makes the service illegal in France.Should any French resident subscribe to DidTheyReadIt they face a fine of 300,000 euro (about $372,000) and a prison sentence of 5 years. Apparently, any other use of Web bugs, for example, in content provided by Web servers, has yet to be considered by CNIL.But the French aren’t the only ones who don’t approve of these techniques. In the U.K. a government body, the Information Commissioners’ Office (ICO), published a revised version of its “Guidance to the Privacy and Electronic Communications (EC Directive) Regulations 2003.”The ICO published the changes in a document titled “Appendix 1: Summary ofChanges to Version 2.” This adds a new section to the Guidance concerning not only Web bugs but also cookies. In the case of Web bugs in e-mail, recipients must be informed about their existence in the body text of the message and instructions on how to switch off the Web bugs must be included.The ICO has yet to take action to enforce the regulations but the possibility is there.The implications of the French and U.K. legislation for e-commerce are significant as the consequences on what information can be gathered and how should not be underestimated. If there is enough political will in Europe you can expect such legislation to be adopted by the EU under the umbrella of its privacy legislation. Keep an eye on this topic – it could change the way you do business. Related content news analysis Cisco uncorks AI-based security assistant to streamline enterprise protection With Cisco AI Assistant for Security, enterprises can use natural language to discover policies and get rule recommendations, identify misconfigured policies, and simplify complex workflows. By Michael Cooney Dec 06, 2023 3 mins Firewalls Generative AI Network Security news Nvidia’s new chips for China to be compliant with US curbs: Jensen Huang Nvidia’s AI-focused H20 GPUs bypass US restrictions on China’s silicon access, including limits on-chip performance and density. By Anirban Ghoshal Dec 06, 2023 3 mins CPUs and Processors Technology Industry news EU approves $1.3B in aid for cloud, edge computing New projects focus on areas including open source software to help connect edge services, and application interoperability. By Sascha Brodsky Dec 05, 2023 3 mins Technology Industry Edge Computing Cloud Computing brandpost Sponsored by HPE Aruba Networking Bringing the data processing unit (DPU) revolution to your data center By Mark Berly, CTO Data Center Networking, HPE Aruba Networking Dec 04, 2023 4 mins Data Center Podcasts Videos Resources Events NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe