snoopy5
Well-known member
Because XenForo 1 is no longer under active development, it hasn't been for some time. The only releases will be security ones. We aren't going to be backwards engineering fixes for every piece of new legislation the EU decides to churn out.
Is this the right attitude? The GDPR is known since April 2016. For 2 years xenforo did nothing.
The Can-Spam Act of 2003 was neither respected:
https://www.ftc.gov/tips-advice/business-center/guidance/can-spam-act-compliance-guide-business
Quote of #6:
"...You can’t charge a fee, require the recipient to give you any personally identifying information beyond an email address, or make the recipient take any step other than sending a reply email or visiting a single page on an Internet website as a condition for honoring an opt-out request...."
This is law since 2003. According to that law, Xenforo should have had already since its inception an unsubscribe link in each email and no login to unsubscribe. What about that?
I am not amused to hear now, that it is too late and it is all our problem.
You scratch on your reputation, if you deal with problems like this in that way.
We pay for the software and we depend on trust to those who develop it. If the trust is misused in scenarios like this with statements as "we do not care, that's your problem", while there is objectively definetely something missing, than this is not a good impression.
You could say: we will look more into this, we will check with the authorities and lawyers and in case something is wrong we will fix it asap. But instead you try to sugercoat the problem and point the finger of blame to your customers.
Not a good sign...