Don't publish user privacy to email providers
-
Don’t send the exported data by email. Your (WordPress’s) change of exporting exposes journalists to dangers.
-
Hi –
Please share more details if help is needed from our support team. We will need to know what site you’re working on as well.
-
You transferred me to the new export page to https://wordpress.com/export/user.wordpress.com. When I clicked the
Export selected contentbutton there, you sent the exported data by email. -
We’ll take that into consideration.
For now, please make sure that the email address on your account is correct and secure.
-
Thanks for your consideration. At lease please make WordPress possible not to send email when exporting. Such an insecure feature ought to be opt-in.
-
I’m afraid there’s no way to avoid this – when exporting a large site there are several processes that need to be run that can sometimes take an hour or two. The export file is emailed once this process completes, as the alternative would be to require people to keep their computer on and their browser open on the export page until the process completes and the file is generated.
Why exactly do you feel the process is insecure? The email does not contain the export file itself, but only a link to the file on our servers. That link is only sent to the email address of the site admin who requested the export, and only a logged-in admin on a site can request an export.
-
> The email does not contain the export file itself
I didn’t notice it because I immediately deleted the email. Finally, can you delete or anonymize this topic?
-
We do not delete forum threads unless it’s a safety issue.
What would you like me to anonymize? You haven’t provided any personal information in your replies on this thread. Your WordPress.com username and Gravatar image are considered public information, and cannot be removed from the thread.
- The topic ‘Don't publish user privacy to email providers’ is closed to new replies.
WordPress.com Forums 