Why can’t we use Cookies without storing the IP ?

Hi,

For GDPR compliance one should avoid storing IP addresses in the database.

Your GDPR rules are a bit pointless as they prevent the use of cookies and as such make the polling process easily abused.

I must admit i really don’t understand why there is no option to use cookies without storing the IP… This is a classic use case for cookies without any relation to IPs that are often dynamically changing (especially on mobiles).

Hope you can reconfigure this option as it’s the only thing that prevents me using this otherwise great plugin.

Thanks.

First of all, you only need to store the essential information in order to prevent the user from double voting, and for that we ONLY need a cookie.
So why store sensitive IP information and have the risk of it being exposed in a breach ?

Regarding their gravity, IP addresses can be used to DIRECTLY identify a user, while Cookie information in a database can be a random string that will be useless by itself.
So you can’t put them both into the same basket.

As for consent, Cookie consent is generally addressed in a website’s ‘Cookie Bar’ and Cookie Policy although it can also be added to the Poll itself as you allowed to do which is fine, but if we don’t need the IPs, there is no point asking a consent for them.

You can leave the options as they are for people who want to use both Cookies and IPs (although blocking by IP may block other people if a NAT is being used..) BUT add the option to use cookies without storing the IP.

Regards.

That’s Great ! Will be looking forward to the new update 🙂

For country reference, An option to Anonymize the IPs And use a cookies will be great as well 😉

Thank You !