Browse Definitions :
Definition

Electronic Commerce (EC Directive) Regulations 2002

The Electronic Commerce (EC Directive) Regulations 2002 establishes legal rules that online retailers and service providers must comply with when dealing with consumers in the 27 member countries of the European Union (EU). The directive dictates the information that consumers must be provided with in online transactions. If a retailer/service provider fails to provide information required by the directive, its contract with the consumer may be invalid and it may be in breach of member state retail law.

Services covered by the directive include paid-for and free online information services provision, and online selling of products and services such as advertising, professional services, entertainment, and Internet and telephony service provision.

Retailers/service providers must provide the following information to consumers when conducting business via electronic means:

  • The technical steps involved in placing an order.
  • The terms and conditions under which a contract is made. This information must be available to the consumer in a way that can be reproduced and stored.
  • Prices must be clear and state whether tax or shipping costs are included.
  • The name of the service provider, its email address (a contact form is not sufficient) and a geographic address.
  • Acknowledgement of the order by electronic means and information on how to amend input errors made during the order process.
  • If it is a company, the company's registration number and place of registration.
  • Membership details, including registration number of any trade or professional association of which the service provider is a member.

Any breach of these requirements is considered a breach of statutory duty. If the consumer is not informed of how they can amend errors in an order, the contract can be voided.

EU law dictates that electronic transactions are subject to the Internal Market clause, which dictates that 'information society services' are subject to the law of the member state and that a member state cannot restrict incoming services.

The directive also applies to services provided by SMS text messaging. Given the 160 character limit of SMS, the body of the message must contain a URL where the required information can be found.

This was last updated in August 2010
SearchCompliance
  • pure risk

    Pure risk refers to risks that are beyond human control and result in a loss or no loss with no possibility of financial gain.

  • risk reporting

    Risk reporting is a method of identifying risks tied to or potentially impacting an organization's business processes.

  • risk exposure

    Risk exposure is the quantified potential loss from business activities currently underway or planned.

SearchSecurity
  • script kiddie

    Script kiddie is a derogative term that computer hackers coined to refer to immature, but often just as dangerous, exploiters of ...

  • cipher

    In cryptography, a cipher is an algorithm for encrypting and decrypting data.

  • What is risk analysis?

    Risk analysis is the process of identifying and analyzing potential issues that could negatively impact key business initiatives ...

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • fault-tolerant

    Fault-tolerant technology is a capability of a computer system, electronic system or network to deliver uninterrupted service, ...

  • synchronous replication

    Synchronous replication is the process of copying data over a storage area network, local area network or wide area network so ...

SearchStorage
  • gigabyte (GB)

    A gigabyte (GB) -- pronounced with two hard Gs -- is a unit of data storage capacity that is roughly equivalent to 1 billion ...

  • MRAM (magnetoresistive random access memory)

    MRAM (magnetoresistive random access memory) is a method of storing data bits using magnetic states instead of the electrical ...

  • storage volume

    A storage volume is an identifiable unit of data storage. It can be a removable hard disk, but it does not have to be a unit that...

Close