Page MenuHomeMiraheze

We are not compliant with the GDPR
Closed, ResolvedPublic


Today i found out we are not compliant with the GDPR. This is because just merging the account from <user> into GDPRAccount, does not mean all PII is deleted. Some extensions could hold PII that CentralAuth does not touch, or it could be ips. should be updated to initiate merging user accounts into GDPRAccount and deleting any PII.

Event Timeline

John raised the priority of this task from High to Unbreak Now!.Apr 29 2020, 17:35
John changed the visibility from "Custom Policy" to "Public (No Login Required)".Apr 3 2022, 12:56
John changed the edit policy from "Custom Policy" to "All Users".
John edited projects, added Security; removed acl*security.