- Posts: 36
- Thank you received: 4
Welcome to the LimeSurvey Community Forum
Ask the community, share ideas, and connect with other LimeSurvey users!
Cookies - Information notice
- advanz_lu
- Topic Author
- Offline
- Junior Member
these days websites are getting paranoid about cookies and the "do you accept cookies" messages are now everywhere.
LS *needs* cookies to manage the survey workflow.
I was wondering if there was an easier way (a new option in the 'data policy settings' ?) to inform the user that the cookies that are being sent are "essential" for LS to work properly - other than making a manual note on the introduction page to a survey?
Thanks,
-Graham-
- jelo
- Offline
- Platinum Member
- Posts: 5036
- Thank you received: 1259
No, but you can add a feature request.advanz_lu wrote: I was wondering if there was an easier way (a new option in the 'data policy settings' ?) to inform the user that the cookies that are being sent are "essential" for LS to work properly
I'm not a fan of these "do you accept cookies" messages. These were the result of a cookie law long before GDPR. UK was quite pushy. In Germany no local law was enforced, so haven't found many websites using these additional cookie warnings.
Since GDPR is in force, the cookie warnings became bigger and often turned into a tool for acceptance of different cookies. Mostly caused by advertising tracking.
What I would like to see, is an internal warning box inside the data policy settings, where LimeSurvey is informing the survey designer about the impact of survey settings done.
The kind of cookie usage would be there too.
Depending on the settings that might change. E.g. "Set cookie to prevent repeated participation" will set a cookie, which is not expiring with the user session. But that setting currently seem to be buggy. So no cookie is set.
The sessioncookies are named depending on the serversettings (PHPsessionname). LimeSurvey dev could change the name, but currrently use the generic name.
PHPSESSID Path / Expires on Session
YII_CSRF_TOKEN Path / Expires on Session
The meaning of the word "stable" for users
www.limesurvey.org/forum/development/117...ord-stable-for-users
- DenisChenu
- Offline
- LimeSurvey Community Team
- Posts: 13716
- Thank you received: 2502
GPDR in LimeSurvey is more related to : «What do you do with the data»
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
- jelo
- Offline
- Platinum Member
- Posts: 5036
- Thank you received: 1259
DenisChenu wrote: GDPR accept session cookies without information.
The impact of GDPR on cookies when not using third-party tools for tracking and advertising is not strong.
Nothing really changed.
But in the data protection statement you can state the cookies the website sets. You often do that, to prevent people getting confused (or more), when looking at the cookies.
The upcoming EPrivacy regulation ( en.wikipedia.org/wiki/EPrivacy_Regulation_(European_Union) ) will change the way to handle cookies.
That regulation will stop the inform and consent madness on cookies for things like session and shopping-cart. So no consent is needed for non-privacy-intrusive cookies.
The meaning of the word "stable" for users
www.limesurvey.org/forum/development/117...ord-stable-for-users
- DenisChenu
- Offline
- LimeSurvey Community Team
- Posts: 13716
- Thank you received: 2502
Seems administration want to track all action of citizen … I'm unsure if i prefer to be tracked by company or by governement …
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
- jelo
- Offline
- Platinum Member
- Posts: 5036
- Thank you received: 1259
I don't see a direct connection between the ePrivacy regulation and your statement. That depends on the country.DenisChenu wrote: Seems administration want to track all action of citizen
So, you might be interested in:
www.oxfordscholarship.com/view/10.1093/o...0190685515-chapter-2Systematic Government Access to Private-Sector Data in France
The meaning of the word "stable" for users
www.limesurvey.org/forum/development/117...ord-stable-for-users
- DenisChenu
- Offline
- LimeSurvey Community Team
- Posts: 13716
- Thank you received: 2502
Yes, but eRegulation give Eu rights on this :jelo wrote:
I don't see a direct connection between the ePrivacy regulation and your statement. That depends on the country.DenisChenu wrote: Seems administration want to track all action of citizen
…
See eBusiness Life cycle (use case) for citizen : documents goes to Public administration + Justice + Health and come back ?
If i buy a book on any e-coomerce, why it can need a call to gov ?
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
- advanz_lu
- Topic Author
- Offline
- Junior Member
- Posts: 36
- Thank you received: 4
you see the cookie message at the top of the screen.
My original question was whether it would be a good idea to have an option that "simply" puts a banner like this to tell people - "In order to take this survey, you are agreeing to our use of cookies."
Then this banner can disappear on the next question screen.
Thanks for the various links and information - very useful and interesting !
-Graham-
- jelo
- Offline
- Platinum Member
- Posts: 5036
- Thank you received: 1259
I don't see that feature coming. I won't support it and won't use it.advanz_lu wrote: My original question was whether it would be a good idea to have an option that "simply" puts a banner like this to tell people - "In order to take this survey, you are agreeing to our use of cookies."
Millions of people are clicking these signs everyday without reading, without consent. It makes sense when you have a lot of thirdparty cookies or firstparty tracking cookies, but for LimeSurvey usage you can just put a sentence in the data policy text.
The meaning of the word "stable" for users
www.limesurvey.org/forum/development/117...ord-stable-for-users
- advanz_lu
- Topic Author
- Offline
- Junior Member
- Posts: 36
- Thank you received: 4
Will do
Thanks!
- jelo
- Offline
- Platinum Member
- Posts: 5036
- Thank you received: 1259
I'm quite surprised that you focus on the graphic. I cannot follow your conclusions.DenisChenu wrote: Yes, but eRegulation give Eu rights on this :
See eBusiness Life cycle (use case) for citizen : documents goes to Public administration + Justice + Health and come back ?
The picture is not about ePrivacy. It's about a European IT governance structure (which is touching many topics, so you can draw a connection to ePrivacy as well).
en.wikipedia.org/wiki/EIDAS
www.esens.eu/content/e-sens-project-completed
The new ePrivacy regulation will be replacing this regulation
en.wikipedia.org/wiki/Privacy_and_Electr...tions_Directive_2002
The meaning of the word "stable" for users
www.limesurvey.org/forum/development/117...ord-stable-for-users
- jelo
- Offline
- Platinum Member
- Posts: 5036
- Thank you received: 1259
If you want to mention exact cookie names, you will need to check that in your browser.advanz_lu wrote: Good point
Will do
LimeSurvey isn't overriding the default cookie name of PHP.
Something like this.
The following cookies are necessary for the survey to operate.
Session cookies are used to keep track of a respondents progress in a survey.
PHPSESSID Path / Expires on Session
YII_CSRF_TOKEN Path / Expires on Session
That kind of stuff could be provided by LimeSurvey as well. It's a feature request.
The meaning of the word "stable" for users
www.limesurvey.org/forum/development/117...ord-stable-for-users