Support » Plugin: GDPR Cookie Compliance » Intelligent Tracking Prevention

  • Resolved pemu80

    (@pemu80)


    First of this is the best cookie notice plugin I’ve tried but there is one issue I’m facing.

    Browsers using Intelligent Tracking Prevention (ITP) or similar technology delete the ‘moove_gdpr_popup’ cookie after 7 days as it’s not a HTTPOnly cookie. Clearly, the cookie needs to be readable by javascript for the plugin as-is to function but visitors using Safari are being asked to opt-in again every 7 days rather than every 2 years.

    To work around this I’ve added some code to my functions.php that checks for the existence of the ‘moove_gdpr_popup’ cookie and creates a HTTPOnly only copy, similarly if the HTTPOnly version exists but the original ‘moove_gdpr_popup’ cookie has since been deleted it is reset. This works well other than the cookie bloat and the fact there’s no way of knowing what the expiry date of the cookie should be, perhaps it could be added to the JSON object?

    It is somewhat ironic that GDPR and ITP which are both designed to protect users privacy are conflicting in this way. I’m curious if you are planning on updating the plugin to work around this issue? It should be fairly easy to make the primary ‘moove_gdpr_popup’ cookie HTTPOnly and set a very small session cookie that’s readable by javascript for displaying the banner or not.

Viewing 1 replies (of 1 total)
  • Plugin Author Moove Agency

    (@mooveagency)

    Hi @pemu80,

    Thanks for using our plugins and for your recommendations.

    We will check the ITP options and in a future release of the plugin the cookie expiration issue will be fixed.

    Hope this helps.

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.