How not to use links in marketing campaigns

Mistake by Palo Alto Networks

Small :) data exposure in Palo Alto marketing campaigns


Palo Alto Marketing campaing looked like this:




As you can see there is now encryption (no https) and personal data are visible in url.
Whole link looks like this (personal data removed):

http://get.info.paloaltonetworks.com/webApp/nss-labs-bps-en-success?Company=XXXXXXX%20XXXXXXX&Country;=Poland&JobLevel;=Engineer%2FArchitect&
Email=XXXXXX.XXXXXXX@XXXXXXX.XX&SFDC;_CAMPAIGN_ID=7010g000001LqW6

As my personal data are in this link I am easy to trace. Lets only hope GDPR will fix this in future.