-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512
Thanks for the reference. I will have a look...
On Wed, 2018-04-25 at 11:07 +0000, Horace Michael wrote:
If anybody needs an opensource tool for doing PIA (personal imformation assesment), here is one from French authorities (French DPIA)
https://www.cnil.fr/en/open-source-pia-software-helps-carry-out-data-protect... n-impact-assesment
Hope it helps, Horace
On April 25, 2018 10:03:47 AM UTC, Michael Tremer michael.tremer@ipfire.org wrote:
Hello guys,
I guess you have seen it by now that there is a lot of fuzz and panic about the new GDPR. We are slightly affected by this as well and therefore I have been investigating what we need to do to be compliant.
The website needs the following things changed:
https://git.ipfire.org/?p=ipfire.org.git;a=commitdiff;h=77a085ed3f2e0444ba6f 7d292ee039cc021664a9
This just updates the disclaimer and adds a few clauses about data protection and what we are doing with the data. This applies mainly to the support forums.
This also needs to be ported to the new website design, which I can do shortly. Sven's development branch unfortunately has a few merge issues with the master branch and I need a little time to sort this out.
The other thing that we probably do not need to change because of legal restrictions, but is a good idea anyways is to serve *all* additional JS, CSS and fonts locally. That reduces the amount of data that is being collected by Google Fonts and other CDNs so that we protect our users from that. The additional time the website needs to load is not too bad and should be acceptable over privacy.
Just wanted to keep you folks updated about this.
If anybody else knows anything that we are not doing right about GDPR yet and we need to change, please let me know.
Best, -Michael
-- Horace Michael (aka H&M) Please excuse my typos and brevity. Sent from a Smartphone.