By Juan Maldonado | Posted on September 03, 2013
Let’s talk about best practices to comfort site visitors and build trust.
This screen might look daunting to a site visitor. I just want to sign in to this site, they may wonder, so why does this pop-up say they need my email address, relationship status and my birthdate?
Also, the site visitor might breathe a little easier knowing that their information won’t be sold to a third party who will email them at 3:30 AM and ask why they’re 35 years old and haven’t settled down yet. We all know that’s no one’s business (and the right person just hasn’t come along yet).
Many jurisdictions have rules and regulations in place to protect the online privacy of their constituents. A thorough review of those laws should be done with the guidance of experienced legal counsel. It is a good idea to get professional guidance on the legalities of personally identifiable data even at the earliest stages of deploying social login. Social identity providers give you, the site operator, the flexibility to choose which pieces of information are asked for at the time of authentication. If a particular piece of personal data causes you to run afoul of a local regulation or would expose you to certain additional legal responsibilities which would be difficult or impossible for your business to follow, then it’d be wise to leave that off the requested data list.
How to tell if your identity management is ready for the new data protection regulations…
We just released the latest member of the Janrain product family: Janrain Advanced Policy Manager…
Janrain Information Security Manager, Lisa Nicholson, shares her thoughts on why CSA Level 2 and…