cercamon Posted November 26, 2014 Share Posted November 26, 2014 Hi, by chance I noticed that exist an addon that claims to protect our site againts hidden calls to Prestashop servers. http://codecanyon.net/item/admin-privacy-for-prestashop/8511065 Too bad if that's true... If so, I'd like to know which data is being sent to Prestashop SA and what's the purpose to track our activity though hidden calls. And I'm not referring just as data that shows some advertisements, but I'm concerned about real data that Prestashop SA could read, store, and track regarding our usage, our customers base, our orders, our employees, our sales, stats, etc... Thanks for clarifying Link to comment Share on other sites More sharing options...
Eolia Posted November 26, 2014 Share Posted November 26, 2014 "Don't switch to the dark side of the Force !" Link to comment Share on other sites More sharing options...
shagshag Posted November 26, 2014 Share Posted November 26, 2014 Hi, I am the developer of this module. Prestashop (the script) does not send datas about orders, employees, sales and everything like that to Prestashop's servers. But employee emails, admin URL, shop domain are sent on every admin page (by the avatar on top right for example https://github.com/PrestaShop/PrestaShop/blob/1.6/classes/Employee.php#L437 ). Language, version, email, domain are send regulary https://github.com/PrestaShop/PrestaShop/blob/1.6/classes/Tools.php#L3032 The gamification module, installed by default, sends also datas... Sometimes it's necessary : if you want to know if a module can be updated, you have to send your module list to Prestashop servers but until the 1.6.0.9 you didn't have choice. Finally I don't know if Prestashop uses, stores or transmits those data, but it receives them and you should be able to choose what to send and when. Link to comment Share on other sites More sharing options...
cercamon Posted November 26, 2014 Author Share Posted November 26, 2014 Thanks for the info shagshag. It would be nice if someone from Prestashop SA could explain here the usage of all that data being transmitted. We're using PS 1.5 and I'm concerned about those issues. Thanks Link to comment Share on other sites More sharing options...
vekia Posted November 26, 2014 Share Posted November 26, 2014 employee emails are transferred just for back office purposes, for example to display picture of the logged employee, it's a feature for community (user accounts are based on emails), not a kind of spyware. Prestashop doesnt send any kind of customer datas, any sales information. you don't have to worry. Prestashop sends these informations to give you the best usability expirence and to make life easier. Just take a look how module stuff are integrated. You don't have to download upgrades one by one as a zip files. You can do everything from back office. This is why prestashop installation sends these informations to remote prestashop servers. this is how major CMS system works, like wordpress for example. Wordpress installation are integrated with wordpress remote environment in a similar way. as i said, "environment" like prestashop It's not a spyware, it's feature to make life easier. Link to comment Share on other sites More sharing options...
Recommended Posts