The Privacy & GDPR feature is located at:
This type of visible and clear consent checkbox will help your company be GDPR compliant, at the chat software level. You will need to disclose how the chat data is stored and accessed in your policy text.
Additionally, the only cookies set by the PHP Live! system are (visitor facing chat interface):
phplive_vname - contains the visitor's name for pre-populate of the "name" form field for future chat requests (stored for 1 year)
phplive_vemail - contains the visitor's email for pre-populate of the "email" form field for future chat requests (stored for 1 year)
phplive_vid - The visitor unique session string generated by the system for improved visitor identification (stored for 10 years)
If you see any other cookies set, it is either operator or Setup Admin related or it is cookies set by other third-party services or perhaps your website. If wanting to verify the cookies set, paste the chat icon HTML Code on a completely blank page and you will be able to see the cookies set. The phplive_vname and phplive_vemail are only set when the visitor requests a chat, and only set if the name or email is provided. The phplive_vid cookie is set when accessing the website that has the PHP Live! chat icon HTML Code on the page.
For the operator and the Setup Admin, there are additional cookies set but these cookies only pertain to the operator and Setup Admin and does not effect the visitor side. The operator and Setup Admin cookies does not fall within the GDPR guidelines because it is not visitor effected and does not need to be disclosed to the visitor.
To improve your GDPR compliance, we recommend Download clients to fully utilize HTTPS protocol. This will help secure your PHP Live! system with all data encrypted during transit from visitor's browser to the server. There are various areas of the software that is encrypted but there are other areas that are not for very specific reasons. That is why HTTPS and also a secure server environment is crucial. How data is accessed for Download clients differ from environment to environment.
On Demand Clients:
Our On Demand cloud platform is hosted by a GDPR compliant hosting company with all data accessed through secure methods. All On Demand accounts are automatically set to utilize the HTTPS protocol for security. The HTTPS protocol supports the latest encryption methods, including TLS. The database is hosted on a separate environment from the web server to increase security and all access to the server is through secure methods, accessed only by authorized technicians.
For your visitors, if the visitor requests to have their chat data deleted, there are various methods to allow this:
If your company requires additional GDPR measures, please contact firstname.lastname@example.org with your additional requirements.
Was this helpful?
could be more helpful? send comment