Non-necessary cookies and latest update

  • Resolved isrableki

    (@isrableki)


    5 years, 5 months ago

    Hello, first off thanks for the latest update.

    I am not using the plugin yet but I have been evaluating it and after reading some of the comments, looked into the paid version, and after seeing the latest update I have a suggestion that perhaps could fix the issue with GDPR compliance.

    If we take a look at GDPR they clearly state that you cannot “promote or misguide” users to accept all cookies by checking all cookies by default (including non-necessary ofcourse). This latest update does fix that by letting admins setting them off by default, but it has a drawback.

    The drawback is the case in which a user just clicks ACCEPT without checking settings. So basically if the user does not care then ALL cookies should be enabled… by default or by admin choice.

    IMHO I think the underlying problem is in the code logic. First the cookie of accepting or not 3rd party cookies is set (as well as required cookies), and then the settings are applied based on that (what you see in the popup modal as well as what is applied on ACCEPT action).

    I believe however that the logic should be based on:

    1) Did the user save cookie settings? if not then show 3rd party off and required cookies based on admin setting.
    2) Cookie settings are saved? Then show those settings if user clicks again on settings and apply saved settings on ACCEPT.
    3) Did user click accept without going through settings? Then enable all cookies.

    … and add a CLOSE button to the popup modal.

    Thinking about the current logic perhaps you can use a “gdpr_settings_saved” cookie and then apply the ACCEPT logic based on that, I dunno.

    I like the plugin but I’m afraid I (and many other people) cannot use it unless the proper logic is placed correctly, because not even the pro version is actually GDPR compliant. This brings me back to the latest update, if an admin disables 3rd party cookies by default then they will miss analytics (and a lot of other things) when user just clicks accept.

    I understand changing the logic might not be (in most cases never is) an easy task, but it can only go on favor of your already paying customers, as well as many future ones that might become paying customers, because the plugin is worth it.

    All in all, thank you for the last update and looking forwards to the next, fully compliant, version.

    Best!

    PS: GDPR is a royal PAIN for small sites/companies, but well thought of for big corporations.

Viewing 2 replies - 1 through 2 (of 2 total)

  • For the EU cookies law is really governed by PECR. However, your points are well made.
    Personally I want a website that drops no cookies at all, or at worst essential only. If I can’t get WordPress to do this, then I will have to look at alternative site providers, which is a shame.

    Thread Starter isrableki

    (@isrableki)

    Hello @webtechs,

    Not sure what you mean about alternative site providers… and I do agree about the tracking cookies, certainly unnecessary for analytics but then again, Google rules, no?

    Anyways, you’re welcome to write me at my BLABLIBLU @ SOMETHING.com. Sounds like an interesting conversation here ??

    Best!

    • This reply was modified 5 years, 5 months ago by isrableki.
Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Non-necessary cookies and latest update’ is closed to new replies.