Compatibility with static verion or caching system

Hi @lowick,

The answer to all three questions is yes. When a page is generated, the plugin will block all scripts that place cookies in the html. Every user will get served the same html, so it doesn’t matter if it’s hard page cached or not.

When loaded in the browser, the javascript runs that unlocks scripts based on consent. In opt out regions, it will unlock by default. In opt-in regions, it will unlock after consent, depending on your configuration.

The $_COOKIE code you refer has three applications in the free version:
1) The cookie scan, which checks both cookies set in javascript and in PHP
2) The cookie shredder, which dynamically deletes cookies based on category or service if you have enabled consent per service. This will delete cookies set by PHP code even if the http_only flag is enabled.
3) Custom implementations where users want to check the consent on the server side, with the cmplz_has_consent() function.

Hi Rogier,

Thank you for all these precisions!

So if I understand, if I use Google Analytics for example, the script will be injected in the code and so the cookies will be created only after the user has consented to use the statistics cookies. But, if the user uncheck this category after consenting to it, the cookies will not be deleted (in my case without PHP). Is that right?

Thanks,
Lo?c

Hi @lowick,

Yes. Please note that it depends on what you enter in the wizard: if you are located in a region where anonymous Analytics without consent is allowed, it will fire immediately, unless you specifically state you want to ask consent for statistics anyway. If you configure analytics not anonymously/and or are located in a region where consent is required for anonymous statistics as well, consent is always required for the tracking to start.

As for revoking consent: this also depends on your settings.
If you enable Consent per Service (the Cookie Shredder) first and second party cookies (stored on your own domain) will get removed after revoking consent.

Third party cookies, which are not stored on your own websites domain (e.g. on facebook.com) are not deleted after a revoke, as this is technically not possible due to security limitations in browsers. The user will have to clear the cookies from the browser, as explained in the cookie policy.

Rogier,

Ok, thanks again for your explanations ??

I will try this on the static site in the next days.

Kind regards,
Lo?c

Hello Rogier,

I tried to use Complianz with the plugin Simply Static.

The files placed in wp-content/uploads/complianz/ was not copied to the static version. I fix this by adding the urls manually in the include list in the settings of the plugin Simply Static.

Then, the consent banner was displayed correctly and the consent status changed too but, the Google Analytics code was not added when I accept all the cookies.
I am not sure but this is maybe due to the fact that the tracking code is saved in the database and retrieve using AJAX when the user accept the statistical cookies.

Is there a way to fix this?

Kind regards,
Lo?c

Hi @lowick,

I’m not sure how we missed your follow-up. Can you tell me if there has been any progress, if not. Can we help by reproducing it and see if we can find a solution.

Can you tell me how GA is implemented exactly, so I can do the same?

regards Aert

The tracking code is always present in the html, but will be on “text/plain” by default. After consent, the script is changed to “text/javascript”, and loaded. If the simply static plugin lets the complianz script run as expected, this should work out of the box, as there is no additional ajax request needed. It is possible there’s a different issue, but we’d have to see the site in question, or reproduce the issue locally with your settings.

Hello,

Sorry for the late reply.

The GA code is defined using the field in the plugin wizard tool.

In fact, on the staging site, the tracking was always enabled even if I don’t allow the analytical cookies.

regards,
Lo?c