- changed status to invalid
Get rid of external Resources from Google Fonts (GDPR/DSGVO compliance)
Issue #984
invalid
Hi,
I just installed this theme and at first look, I see some Resources loaded from external sources. Namely (seen at first glance):
cdnjs.cloudflare.com fonts.googleapis.com fonts.gstatic.com
In my usecase, this is not compliant to our privacy policy. Is it possible to get rid of those external dependencies by insourcing them? Or maybe to make their URL configurable?
The fonts could be set to default ones, but the scripts from cdnjs.cloudflare.com can not.
How do others deal with that?
Greets, Gregor
Comments (3)
-
-
reporter
You are right, the call to cdnjs.cloudflare.com comes from the Mathjax-filter and can be configured out in its settings.
But regarding the Google Fonts I strongly disagree with your point of view (as does our privacy policy). Calls to external services is within the responsibility of the site owner. As there is no legal practice about Third-Party resources on websites, this is not yet legally clear. But besides we are cautious on that legal issue, we simply don't want to betray our users to Google.
But nevermind, we bought a commercial theme now which allows us to use self-hosted fonts as an alternative to Google Fonts. This is implemented as a simple configuration setting.
-
reporter
- changed title to Get rid of external Resources from Google Fonts (GDPR/DSGVO compliance)
- marked as minor
- Log in to comment
The library using a CDN is part of Moodle not Adaptable.
You can read about Google fonts and GDPR here: https://github.com/google/fonts/issues/1495
So the responsibility of data protection is Google and not the sites that use the fonts