19 August 2019

Secure store forms thanks to Google reCAPTCHA v3

At IdoSell, the safety of your store is a priority, which is why we constantly monitor the state of security and, if necessary, implement the latest tools to improve it. This time we focused on analyzing the forms in which your client provides an email address. Reacting to the increased risk of attack on forms in your store, we decided to secure them using Google's reCAPTCHA v3 tool and enable it in your store by default.

What is reCAPTCHA v3

reCAPTCHA is a tool created by Google to check whether a user of your site is a human or a bot. Perhaps you associate reCAPTCHA with the "I AM NOT A ROBOT" button or a selection of tiles containing e.g. traffic lights. Fortunately for all of us, these things disappeared in the v3 version that we have just implemented.

I'n not a robot

reCAPTCHA v3 runs in the background and does not require any interaction of your customer. It does not display images to select or codes to rewrite. It returns an assessment of the user's behavior to the store's engine. If the final rating is lower than a certain threshold, we can very likely assume that it is a bot and not log in the email address provided in the form.

Which forms have been secured by us

We have secured the following forms with Google reCAPTCHA v3:

  • Subscription to the newsletter
  • Adding opinions to the item
  • Adding product inquiry

Badge "uses reCAPTCHA security"

Google reCAPTCHA badge

When the store page is secured by reCAPTCHA, Google places a badge informing the user about Google's privacy policy.
The badge is permanently glued to the footer of the store page and is displayed only on the subpages on which the above-mentioned forms are located.

From this moment, the subscription form for the newsletter, adding product opinions and questions about the products will be protected against bots and email bombing. Importantly, despite additional security, customers will not feel any difference when browsing the store's offer and shopping.

You can deactivate security in the store panel in MARKETING AND INTEGRATION \ Google \ Google reCAPTCHA at any time, however we recommend leaving the default settings.