paaljoachim
commented
1 year ago I am adding a note here related to the current client site I am working on. I did not know that it contained Google Adsense so I clicked No in the wizard related to it. The scan should pick this up that Google Adsense is used. So that the wizard should automatically have Yes preselected and give the options below how to handle it.
The better the scan can prehelp the user the more helpful it also is. If multiple people work on a site the person working on the privacy banner might not know what kind of scripts are included in the site. Having Complianz do its scan and give guidance would make for less user errors as the user will follow the advice of the plugin.
I am going through the wizard in Complianz (premium) on this site: https://natrud.no/
I will add comments along the way for each step.
Visitors
Which region(s) do you target with your website? —> Clear and straight forward.
Which banner do you want to display in other regions? —> Creates uncertainty how to handle. It would be helpful with a recommendation here. Common practice.
Do you target visitors from Germany, Austria, Belgium or Spain? Yes/No. Add a question mark beside it. Saying something like these countries are more strict in relation to Privacy. As a user I wonder why the question is asked.
Does your site have visitors with log-in access to a restricted area of the website? —> log-in access could very likely also mean WooCommerce. So that means if you use a Estore/Webshop etc then customers will have login access. I initially said no on this but as I look at it again. I suddenly realized that this can mean WooCommerce customers can login to their account. This time I am selecting Yes. Perhaps the question mark should contain something about running a web store.
NB! What about having the initial wizard should start up with… Type of web site: Personal, Organization, Web Store or other.. If the user selects Web store then the Wizard will automatically adjust based on the initial selection.
Documents
Cookie Policy. — Generated by Complianz — Link to custom page — Custom URL ———> The uncertainty here is that WordPress core automatically creates a Privacy page. How would this compare to the one that Complianz can create? I become hesitant in which option to select. My thinking is that if I select the one generated by Compliaz it will create the correct information based on the specific site and selections I added earlier.
Conclusion: Should the creation of Documents be added later in the Wizard? I say this as the more information the user needs to fill out the more detailed and correct the Cookie Policy can become. Or so says my thinking about this.
I select “Generated by Compliaz”
Next up. Privacy Statement. The same feedback in regards to the Cookie Policy is also for the Privacy Statement.
—> In this case as there is already a document created earlier by someone else I will use that. Linking to custom page. I do wonder if there is something missing in the custom page which the page generated by Complianz might automatically add. So if Complianz can read through the cutom document to see if needed sections are added (might be difficult because of so many different languages) and give recommendations to what is needed then that would be helpful. I am working on in a sense merging custom page with the one created by Complianz.
### Imprint —> Should come up if the document is required and if not required could just be hidden away. I selected: No document.
### Disclaimer —> I skipped this document. But I wonder if it should be added even if it is not legally required.
### Website information Owner of website? What is your address? What is your country? Email address… Telephone number…
Should this actually be added at the begining of the Wizard? —> As it lets Complianz know which country one is located in. At the same time another question here is (in relation to web store) Where is your target audiance? To see if the target audiance is in multiple countries or the same country where the owner is located.
As this could likely help in relation to the rest of the wizard.
### Security & Consent Do you want to enable Records of Consent? (If the site is a web store then I would believe there is no option here as it will likely need to be a Yes.)
I selected: Yes.
Do you want to enable Data Request Forms? —> Do I need to? Should I? There is uncertainty here.
I selected: No
Do you want to respect Do Not Track & Global Privacy Control settings in browsers? —> I have no idea why this question shows up. It should automatically be a Yes.
I selected: Yes
### Consent. Cookie scan.
—> This should be done automatically. After the beginning of the Wizard after having asked what kind of site: Personal, Organization, Web Store or other. There should be a cookie scan. As it shows the cookies and asks about Installing the Burst Statistics from Complianz plugin.
Do you complie statistics of this website? —> Based on the cookie and script (?) scan and type of web site this should be automatically defined showing current usage on the web site. With the option to change. This section creates uncertainty as my focus is on setting up Privacy others have done development things. So I am not certain what to go with. Having a these are being used on the site or something that tells me that Complianz has scanned through the site and this is the correct option to use would be helpful. One could change if needed but that is unlikely as the plugin has scanned through the site.
I selected: Google Analytics. I do not know if I should instead have selected “Yes, and Google Tag Manager fires this script” instead.
Does the following apply to your website? I have accepted the Google data processing amendment Google is not allowed to use this data for other Google services IP addresses are anonymized or let Complianz do this for me ——> This creates uncertainty. I left it at what Complianz had preselected for me. As I am not sure if I need to adjust anything here.
### Services Do you want to use “Consent per Service?” —> This creates uncertainty. I do not know what to select, so I left it at what Compliaz had preselected.
Does your website use third-party services? —> Based on the selection of the type of web site and the scan of the site this question should not be needed. This creates uncertainty as I would think that by now that Complianz would already know the answer to this question.
I selected: Yes.
Select the types of third-party services you use on your site. —> This creates uncertainty as I thought the scan would already reveal this information.
I selected: Google Maps. As I know the shopping cart will show a map I believe it is a Google map.
There are so many choices here making very easy to make a mistake and wonder if I made the correct choice.
Does your website contain embedded social media content, like buttons, timelines, videos or pixels? —> The Complianz scan should have already picked this up. Not needing this question.
I selected: No. As it does not contain video or embedded social media.
Does your website use cookies for advertising? —> The Complianz scan should already have picked this up.
I selected: No.
Does your website use WordPress comments? —> The Complianz scan should already have picked this up.
I selected: No. The site does not use comments.
### Plugins Enabled integrations. —> Great this should likely be added at the beginning of the Wizard. First what kind of site (My option: Web store)? Then Address information and target audiance. Then Enabled integrations to show what kinds of plugins Complianz would need to relate to in its Privacy documents.
Privacy statements from plugins “You have chosen to generate your own Privacy Statement, which means the option to add custom text to it is not applicable.” ——> Creates tension and uncertainty. Did I make a mistake earlier selecting to use the custom privacy statement? Should I have instead gone with the one that Complianz automatically creates in the site language? Hmm should I go back and change custom to Complianz created statement….. I do not know.
Cookie descriptions Connect with Cookiedatabase.org —> This step creates uncertainty. As it is complex and shows a long list of cookies that I do not know how to relate to. This step should/could (?) be added far earlier right after the enabled plugins scan. As this is another scan.
I selected: to scan and see the list not knowing what to do with it and then select Save and Continue.
Service descriptions. —> An automatic scan which seems tied in with the plugins scan. Perhaps the plugin scan should be mixed in with the Service descriptions.
I selected: To scroll further down. As I had no idea what to do in that screen. I selected: Save and Continue.
### Create documents —> Creates uncertainty as I have earlier been through steps in creating a document. Can all the documents be created in the same step? After having through through the needed user interaction of what Complianz is not able to automatically detect.
I selected: To use the Norwegian document that is there from earlier. I clicked to Update pages. I do not know if it will be in Norwegian or in English. (As I user I have decided to see the backend in English even though the site is Norwegian). I selected: Save and Continue.
Link to menu. —> Creates uncertainty. As I can select to redirect based on GEO IP or choose a menu per document. As the site only operates in Norway then Compliaz should not give me an option to use GEO IP but instead go directly to adding an item in the menu. I selected to add an item to the Footer navigation. I selected: Save and Continue.
### Finish Enable Cookie Banner —> Creates hesitation. I would not believe that this is an option. I would believe because of the type of site that I would have to have a Cookie banner.
I selected: Yes
Enable Cookie Banner (again?)
I selected: Yes
—> Cookie banner should be automatically enabled. If one needs to disable then one can go into settings and notice additional options there.
I selected: Save and Style Cookie Banner
——
Goes to Cookie banner settings. This looks like this (zoomed out to get the full screen.)