[wp-trac] [WordPress Trac] #44001: GDPR: oEmbed two click / local emoji scripts
WordPress Trac
noreply at wordpress.org
Tue May 8 06:22:59 UTC 2018
#44001: GDPR: oEmbed two click / local emoji scripts
------------------------------+------------------------------
Reporter: yoursql719 | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version: 4.9.5
Severity: major | Resolution:
Keywords: gdpr needs-patch | Focuses:
------------------------------+------------------------------
Comment (by yoursql719):
Replying to [comment:2 swissspidy]:
> > The emoji script is loaded from Automaticc
>
> The emoji stuff is loaded from the WordPress.org CDN. It has nothing to
do with the company Automattic.
Thanks for clarification. Even loading a script from a CDN must be
clarified, if this CDN stores any user cookies / informations. Till now
there is no information about what infos are stored to the wordpress
servers everytime this script is loaded.
>
> As for the suggestions: IANAL, but I don't think these steps are
necessary for GDPR compliance. But I leave that for the experts to decide.
I can show you several posts about this problem and it is very relevant
and one of the main parts of the GDPR: youtube and other providers stores
cookies, when an user is accessing your site. Therefore it is not enough
only to tell the user, that you´re doing this. You need the user to have a
choise, wether he would like the see the video or not. It should NOT be
loaded whithout any kind of opt in.
This is especially a german jurisdiction problem and yes if affects the
e-privacy law partly, which comes with 2019, but some parts will be
relevant on the may 25th.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/44001#comment:3>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list