Require consent in order to use userID feature #15431
Labels
c: Privacy
For issues that impact or improve the privacy.
Milestone
Comments
|
I would just keep in mind that for most User ID use cases it doesn't really matter if one stores a hashed or unhashed ID as it can be reversed trivially (e.g. hash e-mail of all registered users) |
|
Yep true. Probably in all cases it should require consent. |
I heavily DISAGREE with this |
|
@voarsh2 Why do you think this shouldn't be the default (not suggesting removing this option)? |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In Matomo tracker we already have a method that can be called that a user has given consent to be tracked. We also already attach a tracking URL parameter
consent=1when consent was given.I think by default, Matomo should record a raw (unhashed) User ID only if a user consented to it.
This is to protect user privacy. And User ID certainly can be considered personal data and therefore we should require by default our users to ask for consent in order to use this feature.
The text was updated successfully, but these errors were encountered: