If anybody needs an opensource tool for doing PIA (personal imformation assesment), here is one from French authorities (French DPIA) https://www.cnil.fr/en/open-source-pia-software-helps-carry-out-data-protection-impact-assesment Hope it helps, Horace On April 25, 2018 10:03:47 AM UTC, Michael Tremer wrote: >Hello guys, > >I guess you have seen it by now that there is a lot of fuzz and panic >about the >new GDPR. We are slightly affected by this as well and therefore I have >been >investigating what we need to do to be compliant. > >The website needs the following things changed: > >https://git.ipfire.org/?p=ipfire.org.git;a=commitdiff;h=77a085ed3f2e0444ba6f7d292ee039cc021664a9 > >This just updates the disclaimer and adds a few clauses about data >protection >and what we are doing with the data. This applies mainly to the support >forums. > >This also needs to be ported to the new website design, which I can do >shortly. >Sven's development branch unfortunately has a few merge issues with the >master >branch and I need a little time to sort this out. > >The other thing that we probably do not need to change because of legal >restrictions, but is a good idea anyways is to serve *all* additional >JS, CSS >and fonts locally. That reduces the amount of data that is being >collected by >Google Fonts and other CDNs so that we protect our users from that. The >additional time the website needs to load is not too bad and should be >acceptable over privacy. > >Just wanted to keep you folks updated about this. > >If anybody else knows anything that we are not doing right about GDPR >yet and we >need to change, please let me know. > >Best, >-Michael -- Horace Michael (aka H&M) Please excuse my typos and brevity. Sent from a Smartphone.