Concern about blocking reCAPTCHA

Hi @nuevaenword,

Aside of the functionality of the service itself, personal data might be processed (and shared with Google) as a result of using the service. Further elaboration can be found in our earlier article on the subject: https://complianz.io/google-recaptcha-and-the-gdpr-a-possible-conflict/

Also note that you will be able to decide whether you want to block the Google ReCaptcha service or not, by enabling/disabling the Google ReCaptcha slider under Complianz > Integrations > Services.

Kind regards, Jarno

Hi Jarnovos. Thanks for your reply. Yes, I know. That’s exactly what worries me. If I aply the integration proposed, everybody could deactivate reCAPTCHA. It is not just a matter of Contact Form 7. I am talking about the register process throw WooCommerce and the buying process. I think that if a malicious user deactivate reCAPTCHA the site would be vulnerable. What do you think? Thanks in advance.

• This reply was modified 1 year, 6 months ago by nuevaenword.

Hi @nuevaenword,

If you require ReCaptcha validation on a certain form/registration page, and block ReCaptcha before consent is obtained; that doesn’t mean that the sending the form/registration can suddenly be performed without ReCaptcha.

Such pages would still require the ReCaptcha validation to be completed, with the difference being that it now only loads after consent is obtained.

But you could also opt for a more privacy-oriented alternative, such as hCaptcha or Friendly Captcha.

Kind regards, Jarno

Ok Jarnovos. Now it’s clear. I have another question. How can download the plugins proposed because the links leads me to the gitHub pages but I cannot download the plugins from there. Thanks in advance

Hi @nuevaenword,

Could you help me understand which links/plugins your question concerns exactly?

Kind regards, Jarno

The ones provided in this page https://complianz.io/integrating-the-consent-api-with-contact-form-7/

It sais (Download) but the download never happens, it leads to the gitHub pages instead.

Hi @nuevaenword,

You can download plugins from GitHub by clicking the green code button -> “Download .zip”.

But please note that we can no longer integrate with the Google reCaptcha implementation in recent versions of Contact Form 7. The version of CF7 on that page is therefore an “old” version of the plugin where this was still possible.

Personally I would advise against using deprecated versions of plugins, and use an alternative form plugin (i.e. WP Forms/Forminator etc.) if you want Complianz to block the ReCaptcha.

Kind regards, Jarno

Hi again. I have another question. In order to block reCAPTCHA prior to consent, do I need to use the same form plugin for the register and for the buying process? Thanks in advance.

• This reply was modified 1 year, 6 months ago by nuevaenword.

Hi @nuevaenword,

It depends, but should work in theory as long as there aren’t two implementations on the same page. I’d recommend giving it a try, we can always have a closer look if you have an example that we can view.

Kind regards, Jarno

Hi again Jarnovos. The problem is that the reCAPTCHA is disabled by default. It works when sending a form. But the blocking doesn’t take place during the register process, or during the checking process when somemody buys someting. I don’t know how to add a reCAPTCHA to those pages. This is my testing URL https://www.prueba.unifilomedia.net/ Thanks in advance.

Hi again Jarnovos. In those pages “register” and “finalize purchase” the problem is the reCAPTCHA is blocked,if I don’t allow marketing cookies, but the form is sended anyway without protection. What can UI do? Thanks in advance.

Hi @nuevaenword,

I’m not sure whether I fully understand the question yet. If you’re able to perform all actions without ReCaptcha validation being required, the implementation of ReCaptcha itself might not be correct.

Just to clarify: Complianz doesn’t implement ReCaptcha on your site, but is used to handle consent for your existing ReCaptcha implementation.

Kind regards, Jarno

• This reply was modified 1 year, 6 months ago by jarnovos.

Hi Jarnovos. Yes, I know. I have a new plugin “Advanced Google reCAPTCHA” Which is activated for the WooCommerce pages. So in theory it is working there. But I cannot see anything there. I have reCAPTCHA 3 and I have introduced the keys, I don’t know why it doesn’t work. I don’t know if it is compatible with your plugin. Do you know it?

Hi @nuevaenword,

Actually, on closer inspection, this does seem to work fine already on the /mi-cuenta/ page.

I deny the cookies and try to create an account, which fails with the following message: Error:?Falló la verificación de Google reCAPTCHA

And then I accept the cookies and create an account once more, which now succeeds with the following message: Gracias por registrarte. Para que puedas iniciar sesión tienes que activar la cuenta.

So it does seem that Complianz is correctly blocking/reloading the reCAPTCHA script on this site. But we don’t determine which fields on your site require reCAPTCHA to be present, that would have to be configured outside of Complianz.

Kind regards, Jarno

Hi Jarnovos. Well this is good. Now I need to add a placeholder and block the sending of the message. I know is not your plugin but I would apreciate any help. Any idea? I have contacted the other plugin’s developer as well because there is no sign the reCAPTCHA is working on those pages. Well, I’m a bit desperated so if you happen to konw how to do it let me know. Thank you very much for the trouble and have a good day!