In trying to understand the Google Analytics tracking, looking at the pages visited on our website and the online booking forms with Cliniko, I may have spotted a potential privacy issue with Bookings and the confirmation page - maybe need you to confirm.
At the moment, if I went through my browser history, I’d be able to pick up the URL (which includes a unique appointment token) visited when having the appointment confirmed back to me. On that page are the date, time, treatment type and location of an appointment. Whilst those data points don’t allow you to identify a person, if you already know who owns the device, you can start to put the pieces together.
See the example below… (it’s a dummy appointment I created)
If anyone uses a computer after the person who booked the appointment, they could get all the information they need about the type of appointment - which could potentially be a sensitive appointment type and then be able to know all about that person’s appointment. This is true even if you don’t click ‘remember me’.
As you can imagine, this is a cause for concern, and would look forward to a swift response.