Private info shown in page source

  • Resolved silverbackprotein

    (@silverbackprotein)


    1 year, 1 month ago

    I was shocked to find that my private email address and phone nr are mentioned in the source of my home page: https://www.silverbackprotein.nl/

    It’s between <!– START Pixel Manager for WooCommerce –> and <!– END Pixel Manager for WooCommerce –>

    Below just an excerpt where I anonymized the critical parts by adding ‘************’.

    “user”:{“id”:{“raw”:1,”sha256″:”6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b”},”email”:{“raw”:”ju*********ail.com”,”sha256″:”38f2fce7ba8c14f422f67b197268fb1332148ba3133272d38d785767cec540e9″,”facebook”:”38f2fce7ba8c14f422f67b197268fb1332148ba3133272d38d785767cec540e9″},”first_name”:{“raw”:”Jurgen”,”sha256″:”c5195df45ec2aa06018d0426e23be4625fdde0ee9d4bad0449943c1e762efd4d”,”facebook”:”jurgen”,”pinterest”:”63172072c0adb9b4e49ebf3dc5b8b650312e63d442e8db11009e1bcaf7817ba4″},”last_name”:{“raw”:”Verweijen”,”sha256″:”ef1adf04b2da10989ad43ca0522f438ac70a5487a26142cf878b2f864ff43784″,”facebook”:”verweijen”,”pinterest”:”a7da10b9f91a9e4391128ce32581bb771052c686bb912ab58f2febc5c9dd3a4e”},”phone”:{“raw”:”06*******55″,”e164″:”+46**********55″,”sha256″

    Question is how to prevent this from happening or at least change the data here. I even have no idea where it got the data from.

    Thanks in advance for the help. Otherwise I see no other option than to deactivate the plugin and use another to add GA4 to my site.

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author alekv

    (@alekv)

    Hi @silverbackprotein

    I understand your concern, so let me explain how the Pixel Manager prioritizes data security in more detail.

    The tracking pixels in the Pixel Manager come with optional advanced matching features to enhance tracking accuracy. It’s important to note that the Pixel Manager will only transmit data to these tracking pixels if you explicitly opt-in to enable these advanced features.

    The Pixel Manager does not send any Personally Identifiable Information (PII) to Google Analytics 4 (GA4). GA4 itself does not require PII for any of its tracking features. GA4 explicitly prohibits the sending of PII to its platform.

    Regarding the data you observed in the HTML source code, it’s crucial to understand that it is only injected when a user is logged in. It’s a standard practice comparable to a user viewing their own profile page in WooCommerce while logged in. The data remains confined to that specific context.

    Before making this data available for advanced tracking features, Pixel Manager takes additional security measures like creating cryptographic hashes. This further ensures that the data is prepared securely, safeguarding user privacy.

    If you have any more questions or need further clarification, please feel free to ask.

    Kind regards
    Aleksandar

    Thread Starter silverbackprotein

    (@silverbackprotein)

    Thanks for your swift and friendly elaboration. The internal workings are clear to me now.

    Plugin Author alekv

    (@alekv)

    You’re welcome! I’m glad the explanation cleared things up for you. If you have any more questions down the line, don’t hesitate to reach out.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Private info shown in page source’ is closed to new replies.