Making sure that data transfer is only sent and received based on your visitor's consent.
The Privacy Plugin allows you to granularly control what Ninetailed SDK events can trigger and what properties those events can contain with and without your visitors' consent.
The values you pass as configuration when instantiating the plugin determine what events and properties can be sent before or without your user's consent. The plugin provides a consent method when called allows all Ninetailed SDK events to be triggered with any properties.
Installation
Add @ninetailed/experience.js-plugin-preview as a dependency:
Then add the plugin to the Ninetailed instance. Supplying no configuration options to the plugin will use the defaults described in the Properties section.
import { Ninetailed } from'@ninetailed/experience.js';import { NinetailedPrivacyPlugin } from'@ninetailed/experience.js-plugin-privacy'exportconstninetailed=newNinetailed( { clientId:// Your client ID environment: // Your Ninetailed environment }, { plugins: [newNinetailedPrivacyPlugin(); ] });
Properties
Use these properties in the configuration objects passed when instantiating the plugin. Passing blank configuration objects will use the default values.
Configuration
The first configuration object uses the properties above to indicate what events and behaviours are allowed prior to end-user consent.
SDK versions 7.7 and above add a second configuration parameter to specify what tracking events and behaviours are allowed even after a user has consented. This configuration parameter uses the same properties.
Example Custom Use
This example configuration demonstrates overriding the default to allow only page and identify events to be sent and for those identify event calls to only capture the firstName trait prior to user consent.
Additionally, a second configuration object is passed to indicate that all of page, track, identify and component events are allowed, in addition to the lastName trait and track events of type myCoolEvent and anotherCoolEvent are allowed.
All unspecified config object options use their default values.
plugins: [// ... { resolve:`@ninetailed/experience.js-gatsby`, options: { clientId:PUBLIC_NINETAILED_CLIENT_ID, environment:PUBLIC_NINETAILED_ENVIRONMENT, ninetailedPlugins: [ { resolve:`@ninetailed/experience.js-plugin-privacy`,// Gatsby implementations only support the first at this time options: { allowedEvents: ['page','track','identify'], allowedTraits: ['firstName'], } } ] } }]
import { Ninetailed } from'@ninetailed/experience.js';import { NinetailedPrivacyPlugin } from'@ninetailed/experience.js-plugin-privacy'exportconstninetailed=newNinetailed( { clientId:// Your client ID environment: // Your Ninetailed environment }, { plugins: [newNinetailedPrivacyPlugin({ allowedEvents: ['page','identify'], allowedTraits: ['firstName'],// SDK versions >= 7.7 Allow a second config object }, { allowedEvents: ['page','track','identify','component'], allowedTraits: ['firstName','lastName'], allowedTrackEvents: ['myCoolEvent','anotherCoolEvent'] }), ] });
Confirming User Consent
The plugin attaches a consent method to the window.ninetailed object. The consent method takes a single boolean argument. When the argument is true, this sets a localStorage entry of __nt-consent__: "accepted". When not called or the argument is set to false, the __nt-consent__ local storage entry is cleared. Call this method in your client-side application when a user has taken an action that indicates their explicit consent.
window.ninetailed.consent(true) // sets `__nt-consent__: "accepted" in local storagewindow.ninetailed.consent(false) // clears `__nt-consent__` from local storage
