Support » Plugin: Cookies and Content Security Policy » Quickstart and domains

  • Resolved sousedka

    (@sousedka)


    Hi Johan, thank you for your work, it looks great!
    Just I dont understand one thing.
    If I want to be 100% all right with CCPA I can NOT include anything to Domains by using Quickstart? Right?
    Because if I add for example Google Analytics to Domains then it is not block by default anymore.
    And CCPA says: block everything until user dont allow it.
    So I should check this option in Settings to be compliant with CCPA?
    “Only use CSP, no modal for me.” What you mean by modal?

    Or in other words: What to do to be compliant with CCPA?

    Thank you!
    Magdalena

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Johan Jonk Stenström

    (@jonkastonka)

    Hi!

    You can most certainly add any domains you want under domains and still be GDPR and CCPA compliant. But you can’t add anything under “Always allow”, you’ll have to add domains setting cookies under the other categories, and state what cookies are set in your Cookie policy.

    Everything except domains under “Always allow” is blocked until accepted.

    Modal is the screen that appears for users telling them that they have to save their cookie settings. So if you don’t want the users to be able to accept or deny anynthing, you should check that. That will give your site Content Security Policy (CSP) only allowing domains under “Always allow”. More about CSP here: https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP

    Thread Starter sousedka

    (@sousedka)

    Thank you for everything!

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Quickstart and domains’ is closed to new replies.