Re: OpenCart GDPR Code update
Suggestion. Make the google analitics cookies load ONLY after the user accepts them. Also, it would be nice for the core to handle this notification among the info about the session cookies.
Jump to post- Sat May 26, 2018 1:58 am
- Replies 45
- Views 72193
Re: Reason why there is no delete account for user in user account?
I think there is following reason opencart didn't add delete account your self. 1. Anybody can delete your account just by clicking "Delete my account" button simply from an account if a customer is logged in his computer and his computer is not locked. it can be changed in another way by...
Jump to post- Sat May 26, 2018 1:44 am
- Replies 33
- Views 5731
Re: GDPR EU Law Cookies 2018
@marius-ciclistu Hi, I tried your code. It seems to work. That is: I have a banner on my site and when I accept it dissapears. But how do I know it really works? Does it put a cookie on my site? If yes, what is the name of that cookie. But thank you very much for putting the effort in this script. ...
Jump to post- Sat May 12, 2018 3:48 pm
- Replies 78
- Views 36771
Re: GDPR EU Law Cookies 2018
Hi all. Does opencart intend to make a new version that will comply with these new regulations? I did not saw a complete extention/plugin for opencart yet. I counted over 20 tables in DB that store personal data for OC 2.3.x and about 19 tables for OC 3.x.... Now try writhing all those table columns...
Jump to post- Tue May 01, 2018 1:15 am
- Replies 78
- Views 36771
Re: Reason why there is no delete account for user in user account?
I asked for an opinion from others... some say session cookies are not under gdpr law and they mentioned about anonymisation......but they admited this being unclear... Below the law about that: (26) The principles of data protection should apply to any information concerning an identified or identi...
Jump to post- Fri Apr 13, 2018 4:43 am
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
Yes, the "session" cookie is a delicate issue and it's not in the same pot with google's analytics cookies that can be managed via js.
Anyway I would be curious to know the point of view of some enploee that must impose those regulations...
- Thu Apr 12, 2018 4:53 am
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
What about the users just browsing the site? For example google's analytics cookies fall under the GDPR terms.
Jump to post- Thu Apr 12, 2018 4:38 am
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
The best solution (for 1.5.x for shure) would be a newer version of opencart, GDPR compliant:) but I doubt that until 25th of may this could be possible:) I know about that payed plugin (GDPR PERSONAL DATA REQUEST) but I think it doesn't cover 100% the GDRP terms. EDIT The official text of GDPR http...
Jump to post- Thu Apr 12, 2018 4:15 am
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
Thank you. You know better than me the osclass script, so any step towards GDRP compliance is good news. I have some old customers that still use opencart 1.5.x and 2.3.x and that is the reason I rised the GDPR compliance discussion.
Jump to post- Thu Apr 12, 2018 4:06 am
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
This will be my last reply on this issue about cookies. :) What you wrote I already know. But try explaining that to a NON IT person:) PHPSESSID is for identifying the user to the server, even if the user is not logged in, this cookie (even if it's a randon string) with IP for example, can be used f...
Jump to post- Thu Apr 12, 2018 3:10 am
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
You are right. I meant that the law enforcement interprets the law, and the law is unclear and general about the cookie term. If you ask me, at least the PHPSESSIS enters under the GDPR terms and must me loaded only after acceptance, but I could be wrong... I still don't know the defaults cookie pur...
Jump to post- Thu Apr 12, 2018 2:45 am
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
As far as a developer understands cookies you are right (you forgot to mention the default cookie).
The problem is, the law enforcement people are not php developers......
I saw your mods. Nice, thank you.
- Thu Apr 12, 2018 2:31 am
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
For me, the fact that you must load cookies only after the user accepts them, Not true. Temporary cookies required for basic function do not need permission. Long-term cookies that invade privacy (beacons, tracking cookies) are what the law is supposed to require you to ask permission for. If the b...
Jump to post- Thu Apr 12, 2018 2:01 am
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
A customer should be able to request that their data be taken offline, but as has been pointed out, there may be statutory requirements that the store keep it around for some period. The GDPR law is not well thought-out, and though it is founded on good intentions, it practice it is going to be a n...
Jump to post- Tue Apr 10, 2018 2:51 am
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
The customer couldn't delete his account because it is related to the orders and the store owner has to be able to present the order information for taxes(for different countries is from 3 to 10 years ). I understand now. Well I'll wait then to see if opencart will be made to respect the new GDRP l...
Jump to post- Mon Apr 09, 2018 3:10 pm
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
I started doing it my self...but...I'm in doubt now if to scrap the opencart installation and replace it with static pages as, in my case, it has only 3 products.... The delete button for customer is not a big deal... But then there is the export of data stored about that customer...that can exist a...
Jump to post- Sun Apr 08, 2018 1:19 am
- Replies 33
- Views 5731
Re: Reason why there is no delete account for user in user account?
I'm not saying that you are not right in some cases...but the GDPR law starting in 25th of may 2018 is stating that users must have some rights... The whole ideea is big , the delete button is just a small portion of it, among with new cookies accept policy ( you must load cookies ONLY after the use...
Jump to post- Sat Apr 07, 2018 3:45 pm
- Replies 33
- Views 5731
Reason why there is no delete account for user in user account?
Hi. According to GDPR the user must have the right to be forgotten (or a button to delete it's account). Is there a reason why that is not implemented by default? If I make it, would I affect some functionality of opencart (2.3.x for example)?
Thank you.
- Sat Apr 07, 2018 3:18 pm
- Replies 33
- Views 5731
Re: reCaptcha doesn't work qith tsl instead of ssl
Thank you. I use basic captcha for now in opencart. I have another opensource script that uses the same code and gave the same error after disabling the sslv3 from the server, but I managed to solve that in other way. I'm shure that the captcha code from these 2 scripts, opencart and osclass is the ...
Jump to post- Thu Mar 01, 2018 1:52 am
- Replies 5
- Views 1682
Re: reCaptcha doesn't work qith tsl instead of ssl
TLS 1.2 is enabled on the server and I still get that error for captcha....
edit. On latest WP reCaptcha v2 works ok on the same server and same php version 5.6.
- Wed Feb 28, 2018 12:39 am
- Replies 5
- Views 1682
