#3592 - Updated guidance in legals tutorial
-
By Chris Graham
- Added
- 2 views
| Identifier | #3592 |
|---|---|
| Issue type | Feature request or suggestion |
| Title | Updated guidance in legals tutorial |
| Status | Completed |
| Tags |
Roadmap: v11 (custom) Type: Legal compliance / Privacy (custom) |
| Handling member | Chris Graham |
| Addon | core |
| Description | For GDPR compliance organisations may need to:
- Encrypt their filesystem - Encrypt their database - Encrypt their backups - Choose a webhost that is compliant with the 'EU-US privacy shield' - Delete old backups on a schedule - Use SSL for everything - your own site, and others you connect to This depends on the nature of personal data held, and the size of the organisation. The law is pretty vague on exactly who needs to do what and how. It unlikely applies to basic user accounts and analytics, it was more written to deal with companies such as Facebook who hold large amounts of cross-connected personal data. |
| Steps to reproduce | |
| Funded? | No |
The system will post a comment when this issue is modified (e.g., status changes). To be notified of this, click "Enable comment notifications".
Comments