With TYPO3 you can have a lot of fun & success. And at comparatively low cost.
The prerequisite, however, is that your website is implemented correctly and kept up to date. Unfortunately, this is often not the case, which usually leads to high costs, malfunctions and a lot of frustration.
In the following, we list points that you should definitely consider during development as well as during regular maintenance.
Work only with agencies that have multiple TYPO3 certified staff and proven TYPO3 experience >.
Always keep TYPO3 up to date, i.e. always on an LTS version. (more on the topic TYPO3 update)
Use extensions only when really necessary. The more extensions you use, the more expensive/complex/unsecure maintenance and updates become.
Before you start implementing a website or function extension, you should be clear about what you want. Even the best agency cannot deliver on time and quality if design and functional requirements change regularly.
Be sure to comply with the relevant provisions of the GDPR before starting a collaboration with an external TYPO3 service provider. In particular, this means that a Data Processing Agreement (DPA) is concluded with the Agency and that the Agency sets out to you its Technical Organisational Measures (TOM) for the protection of this data.
Make it clear from the outset that the basic aims of the website are as follows: Responsiveness, fast loading times, machine-friendly code, simple and extensive editability of content by editors (even header and footer components must be editable), minimal use of extensions. Measures that contradict these goals should be announced and justified in good time.
A sitemap is an important way for users to find out what the website has to offer and what it covers.
an A-Z list is also a very good way to find your way around and provides users with subject-related navigation.
Always send a confirmation e-mail (friendly form of address including the information provided by the user and your imprint) when users fill out forms. If possible, this should contain further information ("we will get back to you within the next 24 hours", "at the moment all places are occupied, but we will register you in the waiting loop and contact you as soon as a place becomes free", "the next steps are now as follows: ...", etc.). This has nothing to do with design, but a lot to do with UX...
Technical implementation (so-called integration)
The implementation of a design in TYPO3 is called integration. There is a separate certification for this task. The so called TYPO3 CMS Certified Integrator-Examination. A TYPO3 Integrator ensures that your design becomes an executable website whose content and functions can then be controlled via TYPO3.
TYPO3 programming should take the following points into account:
The latest Long Term Support version of TYPO3 should always be used (e.g. TYPO3 CMS 10.4.16 LTS).
Thrid party extensions and own extensions should only be used in very well justified cases.
Images may only be displayed in the maximum required size (e.g. much smaller images are sufficient for the smartphone view). This must be done automatically. It is NOT the editor's task to upload and/or embed the same image in different resolutions.
Editors' work should be made easier with backend layouts.
Editors should only have the rights they need (no page maintenance with admin rights).
Editors must have access to the full range of onpage SEO (title, page description, social media integration, etc.).
the page structure should be divided into semantic HTML elements(<header>,<nav>,<main>,<section>, <article>, <aside>, <footer>).
The logo should be linked to the home page and a meaningful link title text should be set.
all domains should be redirected by TYPO3 to a single one, which in any case only runs via "https://"
the canonical tag should be set up to avoid duplicate content
Is your website multilingual? Then be sure to include the hreflang tag (Read more)
this SEO tool https://varvy.com/ checks how far a website adheres to Google's guidelines(search engine optimisation guide)
Violations of data protection are punishable by heavy fines under the GDPR. This is not the only reason why you should take this topic seriously and protect personal data as comprehensively as possible:
The loading of external resources (e.g. fonts, YouTube videos, etc.) and the use of tracking tools are always subject to approval. This requirement is usually implemented through the use of a Cookie Consent Box. It must be possible to call up this consent box at a later date in order to withdraw consent if necessary.
verwenden Sie immer https (auch für den Backend-Zugang zu TYPO3). Ein Seiten-Aufruf mit http sollte immer auf https weitergeleitet werden.
always use https (also for backend access to TYPO3). A page call with http should always be redirected to https.
On every page there should be links to the pages "data protection" and "imprint" immediately ("above the fold" -> the part of the website that the user sees immediately without scrolling). It is best to have the content of these two pages checked/specified by lawyers.
configure the http header correctly
Always follow the principle of data minimisation when filling out forms: only ask for data that is really needed.
Use data only for the intended purpose
Delete personal data that is no longer needed ("storage limitation"), e.g. log files should be deleted after 60 days at the latest. IP addresses of visitors should be masked. Form data in TYPO3 should also be deleted regularly.