A small bug when requesting data as a not-logged in user

  • Resolved kasia89

    (@kasia89)


    6 years, 7 months ago

    Hi, I just finished setting up your plugin on my website, and it mostly works great, however, when testing data request as a not-logged in user, I noticed a small bug, that can still cause some troubles. First of all, if I go to the privacy tools page right after receiving the email with the link, I see the “identify yourself” version of the page. I found that I have to wait about a minute(?) after receiving the email for the link to go to the version of the page with the options for requesting or deleting data. Since I was testing this, I had the patience to wait, but if a customer/user sees something like this, they’ll probably assume that something is broken, and that’s not good.
    Secondly, even when the link takes me to the page with options, at the top of the page there’s an error message saying that the link seems to have expired. However, right under the error message, I see the “you’re identified as blahblablah” message, and the options for managing the data. And it works, or at least the data request option does, I haven’t tried deleting anything yet.

    I also have a suggestion for the “identify yourself” version of the privacy tools page. It’d be great, if you could add a checkbox with the message along the lines of I accept the Terms and Conditions and the Privacy Policy there as well, since users will be providing us with their emails.

    Which reminds me about one more rather baffling thing. I have a page for reviews set up, which is basically a big comment section with a rating added. I got the checkbox and the message there, but for some reason the link that says terms and conditions goes to my privacy policy, and the link that says privacy policy goes to terms and conditions? I have no idea why is that, I checked, and I set up my privacy policy and ts&cs correctly with your plugin? No idea what’s that about.

Viewing 6 replies - 1 through 6 (of 6 total)

  • Hi there!

    Thanks for the detailed bug report!

    > I found that I have to wait about a minute(?) after receiving the email for the link to go to the version of the page with the options for requesting or deleting data.
    Can you please test how long it takes to receive your forgot password email compared to this one? The plugin should be using the same mechanism for sending emails as the rest of your WP site. If you notice the forgot password email arriving significantly faster, let me know!

    > at the top of the page there’s an error message saying that the link seems to have expired.
    Are you using any cache plugins?

    I will look into the rest of the issues you described today and get back to you.

    Thanks!

    Update: fixed the mixed up T&C and PP links with v1.0.2 – please update!
    Also, please let me know if you’re still having issues with the Privacy Tools page.

    > I also have a suggestion for the “identify yourself” version of the privacy tools page. It’d be great, if you could add a checkbox with the message along the lines of I accept the Terms and Conditions and the Privacy Policy there as well, since users will be providing us with their emails.
    Technically, we’re currently not storing the emails anywhere, so I’m not sure if that is required. I will consult with our lawyer friends at Triniti, ask if this is necessary and get back to you.

    Thread Starter kasia89

    (@kasia89)

    Great, thanks! Ah, see, I somehow completely managed to forget I’m using cache plugin. I excluded privacy tools page from caching and now everything works great. Thanks for bringing this up, I tend to forget the obvious sometimes.

    Awesome. Which caching plugin are you using? I’ll see if we can add automatic compatibility and also a note to the readme that ‘this works’.

    I’m going to mark this issue as resolved. If you have any other troubles at all, please let me know!

    Also, if you’re happy with the plugin, we’d really appreciate a review!

    > I also have a suggestion for the “identify yourself” version of the privacy tools page. It’d be great, if you could add a checkbox with the message along the lines of I accept the Terms and Conditions and the Privacy Policy there as well, since users will be providing us with their emails.

    So I did a sanity check with our friends at the law office. This is totally unnecessary since the email address is currently not collected or stored anywhere. Even if we logged the request, this wouldn’t be necessary as long as you don’t use that email address for any other purposes.

    Or to approach this from another angle: by entering the email address, it’s implied that the visitor gives their consent to use their email address to identify them, so there’s no need to ask that for a second time.

    Thread Starter kasia89

    (@kasia89)

    I’m using WP Fastest Cache. Thanks for clarifying the consent thing!

Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘A small bug when requesting data as a not-logged in user’ is closed to new replies.

Tags