Post by JNeuhoff » Mon Aug 19, 2019 6:56 pm

Scenario:
You send an email via OpenCart's 'Marketing > Mail' function to outlook.com users, where the OpenCart store owner email account (the sender) is a newly created one (not with Microsoft, but with your own domain!). As soon as Microsoft receives your email it instantly sniffs through the sender's data details and uses it for purposes other than for outlook.com recipient to get and read it!

In particular, MS puts the sender's details into illegal blacklists without the sender's consent or knowledge.

Has anybody experience in this area? With any useful tips on how to address it?

MHC Web Design
Override Engine * Integrated VQMod * Unused Images Manager * Instant Option Price Calculator * TrustPilot Reviews * Google Rich Snippets * Google Tag Manager * Export/Import Tool * Template Switcher PHP/Twig


User avatar
Expert Member

Posts

Joined
Wed Dec 05, 2007 3:38 am


Post by straightlight » Tue Aug 20, 2019 12:53 am

Use Single Sign-On or SMTP Authentication with SSL V2+. This should also help to validate the domain from the source before being sent to its destination by the email server.

The most generated errors being found on Opencart forum originates from contributed programming. The increased post counters are caused by redundancies of the same solutions that were already provided prior.


Regards,
Straightlight
Opencart.com Administrator / Quality Assurance Analyst / Programmer


Legendary Member

Posts

Joined
Mon Nov 14, 2011 11:38 pm
Location - Canada, ON

Post by ADD Creative » Tue Aug 20, 2019 3:42 am

Seem to have more problems sending to and receiving from outlook.com hosted emails than any other service.

I guess that they will say they are acting as a joint Data Controller and using Legitimate Interest as their lawful basis for processing. The may even say it's covered by Recital 47 of the GDPR. However, I can see anything on the policies page. https://sendersupport.olc.protection.ou ... icies.aspx

The Microsoft Anti-Spam Policy just returns a 404 !

There is some information below, but nothing about their legal basis.
https://sendersupport.olc.protection.ou ... oting.aspx

I guess the only way is to ask them or use your rights available to you under the GDPR.

www.add-creative.co.uk


Active Member

Posts

Joined
Sat Jan 14, 2012 1:02 am
Location - United Kingdom

Post by straightlight » Tue Aug 20, 2019 7:40 am

ADD Creative wrote:
Tue Aug 20, 2019 3:42 am
Seem to have more problems sending to and receiving from outlook.com hosted emails than any other service.

I guess that they will say they are acting as a joint Data Controller and using Legitimate Interest as their lawful basis for processing. The may even say it's covered by Recital 47 of the GDPR. However, I can see anything on the policies page. https://sendersupport.olc.protection.ou ... icies.aspx

The Microsoft Anti-Spam Policy just returns a 404 !

There is some information below, but nothing about their legal basis.
https://sendersupport.olc.protection.ou ... oting.aspx

I guess the only way is to ask them or use your rights available to you under the GDPR.
Against an Industry? That might need to be reviewed since GDPR is an established law that keeps growing every year.

The most generated errors being found on Opencart forum originates from contributed programming. The increased post counters are caused by redundancies of the same solutions that were already provided prior.


Regards,
Straightlight
Opencart.com Administrator / Quality Assurance Analyst / Programmer


Legendary Member

Posts

Joined
Mon Nov 14, 2011 11:38 pm
Location - Canada, ON

Post by JNeuhoff » Thu Aug 22, 2019 6:01 pm

straightlight wrote:
Tue Aug 20, 2019 12:53 am
Use Single Sign-On or SMTP Authentication with SSL V2+. This should also help to validate the domain from the source before being sent to its destination by the email server.
This is the technical aspect, and yes, of course we have done all of that.

But the legal issue is this: We have shown beyond a reasonable doubt how outlook.com is sniffing out sender's data for illegal purposes other than for the recipient to get and read the email message, and this without the sender's knowledge or consent.
I guess the only way is to ask them or use your rights available to you under the GDPR.
We have submitted a first case to the ICO UK on this.

We also found this link: https://privacy.microsoft.com/en-GB/privacy-questions

MHC Web Design
Override Engine * Integrated VQMod * Unused Images Manager * Instant Option Price Calculator * TrustPilot Reviews * Google Rich Snippets * Google Tag Manager * Export/Import Tool * Template Switcher PHP/Twig


User avatar
Expert Member

Posts

Joined
Wed Dec 05, 2007 3:38 am

Who is online

Users browsing this forum: No registered users and 4 guests