joined:Dec 5, 2002
I'm faced with the decision of whether or not session cookies should persist after a browser restart in my online store. The benefit is that a user's shopping cart contents would persist. The drawback would be that, since I allow guest checkout, their name/contact/address info would also persist if it were entered while checking out. That could cause a privacy issue on a public computer, but should a user be expected to clear their cookies if they don't want their data sticking around?