Caching gravatar on third-party website to avoid privacy issues

  • Author
    Posts
  • #1511166

    Hi,

    we are using gravatar on our website using a standard image link to gravatar.com. This reveals the user’s email hash to the world, which these days isn’t much different from revealing the actual email. Revealing a user’s email goes against our privacy policy, even for a user that specifically chose to enable Gravatar.

    The most straight-forward fix for that is to cache the gravatar on our servers, and serve the image ourselves instead of publishing a gravatar link. But this seems to go against the [Gravatar TOS](https://secure.gravatar.com/site/terms-of-service/) which states that third-party websites must “not copy, store or modify User Submissions”.

    So my question (finally !) is wether caching a gravatar request is acceptable or not. Maybe it is acceptable but with an upper time limit ? Or do you see another way of fixing the privacy issue ?

    #1511209

    supportbot
    Member

    You did not specify a blog address or reason for posting when you created this topic.

    This support forum is for blogs hosted at WordPress.com. If your question is about a self-hosted WordPress blog then you’ll find help at the WordPress.org forums.

    If you don’t understand the difference between WordPress.com and WordPress.org, you may find this information helpful.

    If you forgot to include a link to your blog, you can reply and include it below. It’ll help people to answer your question.

    This is an automated message.

The topic ‘Caching gravatar on third-party website to avoid privacy issues’ is closed to new replies.