Notifications
Clear all

[Closed] GDPR compliance

12 Posts
5 Users
3 Reactions
7,871 Views
Posts: 1602
(@anonymous20)
Noble Member
Joined: 9 years ago
Robert
Posts: 10589
Admin
(@robert)
Support Team
Joined: 9 years ago
Posted by: Anonymous20

An other puzzle is

"Be able to delete a customer and all records associated with the customer, across all your systems, within a month of request."

What happens when you delete a user ? You must delete his posts also ?

wpForo asks to delete all posts and topics of this user when you delete a user:

https://wpforo.com/docs/root/members/member-manager/#delete

Posts: 1602
(@anonymous20)
Noble Member
Joined: 9 years ago
Posted by: anonymous3542

Hi @anonymous20 @robert,

GDPR enables the right to be forgotten, which by definition (unless there is a regulatory or legal reason for you to retain any information), got are legally required by ICO guidelines and regulation to delete all data associated with that individual. By definition, this includes all posts etc that can be attributed to that individual. 

Not sure if all posts must be deleted or just remove the reference to the user (as poster).

 

1 Reply
(@anonymous3542)
Joined: 7 years ago

Honorable Member
Posts: 393

I think it's all posts only if they can be directly attributed to that user. I expect there's a case for data normalisation in terms of removing originally identifiable information

Posts: 316
(@1sharonkat)
Reputable Member
Joined: 8 years ago

Not sure if all posts must be deleted or just remove the reference to the user (as poster).

My understanding is that personal data should be removed, including the avatar but not the contenet.

 

Robert
Posts: 10589
Admin
(@robert)
Support Team
Joined: 9 years ago

The user deleting function allows you to keep user content and only delete user data. Both are available.

Page 2 / 2