My Sellerdeck Account | Free Trial

Sellerdeck Community & Knowledge Base

  #31  
Old 04-Apr-2018, 07:03 PM
feemish feemish is offline
Registered User
Join Date: Dec 2005
Full Name: Mark Carroll
Posts: 958
Thanks: 110
Thanked 50 Times in 44 Posts
Quote:
Originally Posted by graphicz View Post
Hi Sarah

Who are you hosted with? I will post some alternative http to HTTPS redirects that work. Heartinternet for example needs a particular code.

These are the redirects I use - uncomment the one (only one) you want to use:
I am cautiously switching over to SSL for the whole site as Jonathan's argument for doing that seems convincing.

SSL is enabled free on my server by CPanel AutoSSL ( I presume that's OK)

So I tick the SSL box in Business Settings and publish the site.

and its good to go?

I add this to the htaccess file
Code:
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
and all http are sent to https and I will not lose any search engine rankings... Is that right? and is that all I have to do? Thanks
__________________
Arka Tribal Jewellery
Reply With Quote
  #32  
Old 05-Apr-2018, 12:27 PM
graphicz's Avatar
graphicz graphicz is offline
Registered User
Join Date: May 2007
Full Name: Jonathan Chappell
Posts: 828
Thanks: 77
Thanked 135 Times in 101 Posts
These are variously the ones I use, sometimes the hosting company's FAQ have the correct code for their server, sometimes I have to try and error.

The one with port 80 is used less and less with the increase in cloud hosting as that uses different ports.

Code:
## Write all pages to https: uncomment if wanted
#RewriteEngine On
#RewriteCond %{HTTPS} off
#RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]

##OR

#RewriteEngine On
#RewriteCond %{HTTPS} !=on
#RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

## OR ##

#RewriteEngine On 
#RewriteCond %{SERVER_PORT} 80 
#RewriteRule ^(.*)$ https://www.example.com/$1 [R,L]

## OR ##

# Forcing HTTPS
RewriteCond %{HTTPS} !=on
# Pages to Apply
RewriteRule .* https://%{SERVER_NAME}%{REQUEST_URI} [R=301,L]

#EDIT: ***** Please note – if you’re on a Heart Internet server OR Easyspace and 123 apparently, you will need to use: ************
# All calls go to SSL
#RewriteEngine On
#RewriteCond %{ENV:HTTPS} !=on
#RewriteRule ^.*$ https://%{SERVER_NAME}%{REQUEST_URI} [R=301,L]
Be a little careful with hosting companies' 'built in' SSL. Some are OK and actually make your domain name https, others give you a separate URL for their 'built in' SSL which isn't much good for SSL.

If it is truly https://youractualdomainname.whatever then one of the four options will work. Remember to remove the comments of the one you use.
__________________
Jonathan Chappell
Website Designer
SellerDeck Website Designer
Actinic to SellerDeck upgrades
Graphicz Limited - www.graphicz.co.uk
Reply With Quote
  #33  
Old 05-Apr-2018, 07:08 PM
Mantra Mantra is offline
Registered User
Join Date: Jan 2011
Full Name: Martin Nichols
Posts: 72
Thanks: 38
Thanked 9 Times in 7 Posts
Hi Jonathan

Thank you for sharing this useful and informative post on addressing the requirements of GDPR.

Quote:
Originally Posted by graphicz View Post
Tick Show and Required of Invoice Moving Check Status, and change Current Value to:
Code:
To process and deliver your order we need to collect your name, address, email address and telephone number. Please tick here to consent to us doing this. If the box is unticked we will not be able to process your order. <a href="info.html"><em>Privacy</em></a>
What happens if the consent box is left unticked?

Can the customer still complete the fields required to complete the order?

If the customer does not give consent to the collection of name, address, email and telephone number required to process an order then I consider that there should be a means of preventing them from proceeding further to complete an order that cannot be processed without consent.

Martin
Mantra Audio
Reply With Quote
  #34  
Old 07-Apr-2018, 10:59 AM
saucysal saucysal is offline
Registered User
Join Date: Oct 2004
Full Name: Sarah Mabbitt
Posts: 803
Thanks: 53
Thanked 36 Times in 30 Posts
I have moved and used Agree to T & C

I will be making use of the agreement to t and c prompt in the Checkout, where the customer has to tick it or cannot go to next page. I have commented out the code on Checkout Page 1, and copy pasted it to Checkout Page 0 above the prompts for name and address, so they agree before entering any information. I have also added the words "Privacy Statement" before Terms & Conditions so it reads Privacy Statement and Terms & Conditions. I have tried this on a test site and it appears to be fine. I have commented out the Contact Us form, but kept the Contact Us page with our contact details (no form).

The drawback of customers having to tick to Agree is that they need to tick it again each time that they are on the page, such as when they have made an error and taken back to the page. I can't see a way around this, other than to add yet more text instructions.

Sarah
Reply With Quote
The Following User Says Thank You to saucysal For This Useful Post:
Mantra (08-Apr-2018)
  #35  
Old 08-Apr-2018, 03:53 PM
Mantra Mantra is offline
Registered User
Join Date: Jan 2011
Full Name: Martin Nichols
Posts: 72
Thanks: 38
Thanked 9 Times in 7 Posts
Quote:
Originally Posted by graphicz View Post
(Without prejudice) It seems that there needs to be no inherent change in the software as regards the operation of the site, the privacy policy needs revision and it may be that a revised privacy policy is what SD is going to roll out. You will also need to have systems in place for the supply of data to the customer in an easily machine readable form and show you have the ability to delete it. You must also ensure you keep the data securely. Here is some stuff on privacy policy:
https://www.econsultancy.com/blog/69...-with-examples
I have drafted out a new privacy policy statement considering the guidance given and "What you need to do" covered by SellerDeck blog article, http://www.sellerdeck.co.uk/2017/12/14/need-know-gdpr/.

The new Privacy-Policy can be set up in SellerDeck as a New Brochure Page with New Fragments for each of the heading subject areas covered.

This is far more comprehensive and detailed than the default half page "Business Settings | Terms and Conditions | Privacy Policy" provided for in the software and would be to lengthy IMO to include under this tab in its entirety.

Is there a way that this could be incorporated, perhaps by editing the default privacy policy as a Privacy Policy summary here with a link out to a Full Privacy Policy?

Also any advice on how I can change the "Privacy and Security Information" link in the page footer that currently links to the same "info.html" used for "Terms and Conds"?

There is a URL variable in it somewhere, but I can't find it.

Finally, I am expecting to be advised of SellerDecks' own Privacy Policy that addresses the requirements of GDPR for the goods and services it provides very soon now, particularly as SellerDeck customers need to be assured that other party services with whom data is shared like SellerDeck Payments will also be GDPR compliant.

Martin
Reply With Quote
The Following User Says Thank You to Mantra For This Useful Post:
John Ennals (08-Apr-2018)
  #36  
Old 09-Apr-2018, 01:05 PM
graphicz's Avatar
graphicz graphicz is offline
Registered User
Join Date: May 2007
Full Name: Jonathan Chappell
Posts: 828
Thanks: 77
Thanked 135 Times in 101 Posts
You can copy your new privacy document and paste it into Business Settings, Terms and Condtions , Privacy policy deleting what is there. It will then appear in the temas and conditions page, or in design view select Terms and conditions. click on Privacy Policy to display:

Code:
<h3><Actinic:Variable Name="PrivacyPolicyLabel"/></h3>
<div class="terms-conds"><Actinic:Variable Name="PrivacyPolicy"/></div>
., Comment out the privacy policy reference (
Code:
<!-- <Actinic:Variable Name="PrivacyPolicy"/> -->
) and paste your revised copy. It will need to be html coded.
__________________
Jonathan Chappell
Website Designer
SellerDeck Website Designer
Actinic to SellerDeck upgrades
Graphicz Limited - www.graphicz.co.uk
Reply With Quote
The Following User Says Thank You to graphicz For This Useful Post:
Mantra (10-Apr-2018)
  #37  
Old 10-Apr-2018, 12:11 PM
Mantra Mantra is offline
Registered User
Join Date: Jan 2011
Full Name: Martin Nichols
Posts: 72
Thanks: 38
Thanked 9 Times in 7 Posts
Quote:
Originally Posted by graphicz View Post
You can copy your new privacy document and paste it into Business Settings, Terms and Condtions , Privacy policy deleting what is there. It will then appear in the temas and conditions page, or in design view select Terms and conditions. click on Privacy Policy to display:

Code:
<h3><Actinic:Variable Name="PrivacyPolicyLabel"/></h3>
<div class="terms-conds"><Actinic:Variable Name="PrivacyPolicy"/></div>
., Comment out the privacy policy reference (
Code:
<!-- <Actinic:Variable Name="PrivacyPolicy"/> -->
) and paste your revised copy. It will need to be html coded.
Thank you for your response that guided me to a solution.

The privacy policy statement that I have in preparation is to lengthy to incorporate under the Business Settings | Terms and Conditions | Privacy Policy part so I have set this up as a brochure page with fragments for key heading parts introducing a new Privacy-Policy.html page.

I have found that I can link out to the new Privacy-Policy.html URL by adding the html code into the Business Settings | Terms and Conditions | Privacy Policy part:

Code:
!!<<a href="acatalog/Privacy-Policy.html"> Privacy Policy Full</a>>!!
This code line (part) can also be used to replace the Design Library | Page Areas | Deep Footer Layout Line 17 code (part).

Code:
<a href="<actinic:variable name="InfoURL" />">Privacy &amp; Security Information</a>
with amended wording so that the Privacy & Payment Security Information link in the page footer links out to the Privacy-Policy.html URL.

There is also another option to incorporate the complete new Privay Policy statement under the Business Settings | Terms and Conditions | Privacy Policy part by using See More... links to break the text down into sizeable chunks that can be expanded and hidden as required - see Norman Rouxel's excellent post
https://community.sellerdeck.com/showthread.php?t=54937 on how to do this.

Thank you Norman for bringing this to my attention.

I have used this code in some of the Privacy Policy brochure fragment text and verified that it also works fine when pasted into the Business Settings | Terms and Conditions | Privacy Policy part.

That's the structure in place for the privacy policy that is still work in progress as there are points now being aired daily on this forum that need to be considered and addressed.

I just need to consider how I address the consent bit.

I am attracted to Sarah's solution possibly combined with the coding that you have already shared.

Martin
Reply With Quote
  #38  
Old 11-Apr-2018, 03:49 PM
John Ennals's Avatar
John Ennals John Ennals is offline
Registered User
Join Date: May 2006
Full Name: John Ennals
Posts: 106
Thanks: 36
Thanked 34 Times in 29 Posts
Most of the sample GDPR-ready Privacy and Security Policies I've seen on the web have been rather long and difficult to read, often regurgitating the GDPR itself in large chunks to no particular purpose.

I've had a go at a policy suitable for very small businesses with normal human beings (or data subjects if you will) as customers, and it's on my website if you want a look. I'd welcome any comments, and by the same token you're welcome to copy it if you like. No warranty implied! Bear in mind the HMRC record retention period will probably be different if you're a limited company etc.

I haven't got round to changing the wording in the checkout re consent, but will do so over the next couple of days.

John
__________________
www.tortoys.co.uk
Reply With Quote
The Following User Says Thank You to John Ennals For This Useful Post:
Mantra (11-Apr-2018)
  #39  
Old 11-Apr-2018, 07:00 PM
Mantra Mantra is offline
Registered User
Join Date: Jan 2011
Full Name: Martin Nichols
Posts: 72
Thanks: 38
Thanked 9 Times in 7 Posts
Quote:
Originally Posted by John Ennals View Post
Most of the sample GDPR-ready Privacy and Security Policies I've seen on the web have been rather long and difficult to read, often regurgitating the GDPR itself in large chunks to no particular purpose.
I reached the same conclusion and had a go at developing a policy for our small business which I hope is easier to read and understand than some of the policies I've seen.

It has some similarities to yours except I have incorporated the 'Cookie' part into my Privacy Policy - it is not as specific as yours. Thank you for sharing and your offer to copy. I may incorporate some of your ideas across into my policy, I quite like the references to GDPR Arcticle Nos. and some other aspects regards layout, wording, appearance etc.

I too would welcome any comments and would have no objection to members copying it to develop and and tailor for their particular business - no warranty implied.

Quote:
I haven't got round to changing the wording in the checkout re consent, but will do so over the next couple of days.
Nor me but it will take more than a couple of days as it has been very time consuming task and I feel like I need to take a break.

I am also waiting to see if SellerDeck come up with anything new - it has been very quiet on that front lately!!

Martin
Mantra Audio
Reply With Quote
The Following User Says Thank You to Mantra For This Useful Post:
John Ennals (12-Apr-2018)
  #40  
Old 12-Apr-2018, 08:14 AM
John Ennals's Avatar
John Ennals John Ennals is offline
Registered User
Join Date: May 2006
Full Name: John Ennals
Posts: 106
Thanks: 36
Thanked 34 Times in 29 Posts
Martin,

I like what you've done, and I think I will probably follow your lead and incorporate the Cookie Policy rather than making it separate.

I also need to expand the data sharing bit to include and explain Statcounter as a third party, and to mention our legitimate interests somewhere.

I'm treating the Privacy Policy very much as a live document and I expect to carry on tweaking it indefinitely.

John
__________________
www.tortoys.co.uk
Reply With Quote
Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off



All times are GMT. The time now is 04:56 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.