[wp-trac] [WordPress Trac] #59445: Emoji Caching violates GDPR / CCPA
WordPress Trac
noreply at wordpress.org
Tue Sep 26 11:02:39 UTC 2023
#59445: Emoji Caching violates GDPR / CCPA
--------------------------+-----------------------------------
Reporter: antmg | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: 6.4
Component: Emoji | Version: 6.3
Severity: major | Resolution:
Keywords: | Focuses: performance, privacy
--------------------------+-----------------------------------
Comment (by antmg):
The wording doesn't allow for "reasonable use" only things that are
strictly (absolutely) necessary. it doesn't matter what it's used for if
it's not strictly necessary, personal data or not.
But, take the innocent example of the data in this:
{supportTests: {flag: true, emoji: true}, timestamp: 1695725880392}
This will allow me to identify uniquely visitors to the site with a pretty
high precision for a week, unless 2 users managed to build the cache value
at the same millisecond.
Useful is not a valid "strictly necessary" reason, nor is improved
performance. It doesn't matter that it's not personal data.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/59445#comment:8>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list