New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Disable User ID feature (and possibly other similar features) by default #15432
Comments
Note: On Cloud people cannot disable specific plugins so it will be also important to generally have a feature to disable/enable this feature. We could still show "UserID" in the reports but mention it needs to be enabled by a super user to use this feature. This would only apply to new installs but not existing installs |
The way this feature would work is that it only blocks userId in the tracking. Basically, when disabled, the requestParam When disabled, we'd show an additional footer message like this in the report: Still having the report allows still viewing historical data and being made aware this feature exists should they want to use it. Ideally, we also directly implement this feature at the same time as it should not be too much more effort and prevents us from offering a yes/no option: We'd then have a select with three options:
To make |
Moving this issue out of the Matomo 4 milestone for now as its benefit is not 100% clear and we don't really have a way yet to implement the behaviour to only track when consent was given. More details below. The feature won't really help all that much as users would be still able to track personal data through events, custom dimensions, page titles and URLs, etc. It would not really prevent tracking of personal data and be only one part of a solution and we need to see it all in a bigger picture. What are we trying to achieve here? Is it not tracking any personal data by default? Then we'd need to think of a solution that includes events, custom dimensions etc as well. Is it to make users aware they may or may not need to ask for consent before tracking a userId? Then we'd maybe have other ways to solve this that are better. Like in all the documentation around userId, in the app itself etc. Generally, it be great to have features that may track personal data such as custom dimensions and events disabled by default and only track it when specifically enabled and privacy implications were understood by the user. It can then get quickly complicated though and we need to think this through better to tackle this for other features as well. As this is not a breaking feature we can implement this any time and therefore moving it out of Matomo 4. A simple setting could otherwise look like this in the privacy -> anonymise settings Generally speaking #15431 may be more interesting where we would track userId only if consent was given. However, we have no good way of knowing whether a user has given consent or not unless they use our JS tracker methods like |
AFAIK the User ID it's already a plugin so it can be disabled. Ideally, this plugin was disabled by default, or the feature was disabled by default for privacy reasons. This is to prevent any data being recorded without knowing they need to likely ask for consent etc.
Ideally, there is an easier way to enable it though and not just in the plugins manager where it would be barely found. Ideally it would be done in the Admin Privacy section and the user would be educated on how to use it, if they want to use it.
refs #15431
The text was updated successfully, but these errors were encountered: