Creating pages from frontend - but validate input via email-token | DSGVO / GDPR compliant event-registration

hey there…
i am currently taking a look into some kind of event-registration like described in here:

Problem: i want the data to be DSGVO / GDPR compliant… so i have to validate the submitted mailadress…
and for surer i want to automate this…

anyone in here made a solution via kirby?

something like sending a mail with a validation link with special token…
and content isn’t stored before the link gets loaded…
or maybe the link changes the status of the created page from unlisted to listed or so…

Maybe i am on a totaly wrong way… the idea is an event-registration (with some questions included)… and at the end i need a CSV or similar to work with all registrations…
and everything DSGVO / GDPR compliant

thx

DSGVO says: you store and process (personally identifiable) information, you need to tell people and you need to have legitimate interest in doing so. Now, for email registration, it’s their consent, see Art. 6 I lit. a DSGVO.

So, entering an email and submitting the form = consent given. In case false email entered = interest to store until things are cleared = Art. 6 I lit. f DSGVO

If you want to send an email with verification link, you store a hash created from email, and if email with consent (= verification) comes back, you compare email hashes :slight_smile:

1 Like