important: stricter PII handling. Not sharing other user email addresses in emails like invitations

[TreyWW]

How big is this feature?

Small

Describe the problem

At the moment we have checks like {{ request.user.first_name or request.user.email }} has invited you to join xyz! on certain features. This isn't the best habit to be getting into. user first name is acceptable, user email however there may be chances where we leak it without the users action or awareness.

Describe a possible solution

• warnings to users when actions will be emailing other people, tell the main user that their details will be shared
• provide more placeholders, OR force users to fill out a first_name instead of having fall backs at all

[alpha-neutr0n]

Hi @TreyWW, is this worked upon yet? was planning to give it a shot.

[TreyWW]

Hi @alpha-neutr0n,

Apologies for the late reply. Yep that's fine you can work on this. I'd appreciate it if you could update the issue wherever possible as you make progress. Just helps let me know that you're still working on it and if for whatever reason you get stuck or someone else needs to take over they have some more details.

Thanks! I'll assign you now.