GDPR Compliance Chat Recap – February 21st

(full text on slack)

A centralised GitHubGitHub GitHub is a website that offers online implementation of git repositories that can can easily be shared, copied and modified by other developers. Public repositories are free to host, private repositories require a paid subscription. GitHub introduced the concept of the ‘pull request’ where code changes done in branches by contributors can be reviewed and discussed before being merged be the repository owner. https://github.com/ folder was created to gather all info (Roadmap, knowledge base, tracTrac An open source project by Edgewall Software that serves as a bug tracker and project management tool for WordPress. tickets list, etc) while waiting for a final location: https://github.com/gdpr-compliance/info

@idea15 (webdevlaw on slackSlack Slack is a Collaborative Group Chat Platform https://slack.com/. The WordPress community has its own Slack Channel at https://make.wordpress.org/chat/.) indicated that a privacy centre to hold GDPR information for sitesite (versus network, blog) users, for site administrators/owners, and developers is being build. To be checked how this will be split between wordpress.orgWordPress.org The community site where WordPress code is created and shared by the users. This is where you can download the source code for WordPress core, plugins and themes as well as the central location for community conversations and organization. https://wordpress.org/ and wordpress.comWordPress.com An online implementation of WordPress code that lets you immediately access a new WordPress environment to publish your content. WordPress.com is a private company owned by Automattic that hosts the largest multisite in the world. This is arguably the best place to start blogging if you have never touched WordPress before. https://wordpress.com/

How 'other systems' deal with the request to see personal data can be found on https://github.com/gdpr-compliance/info/blob/master/KB.md#how-do-others-allow-users-to-download-their-own-data

A discussion was started if the GDPRWP.com interface is way to go and/or if CoreCore Core is the set of software required to run WordPress. The Core Development Team builds WordPress. should provide actions & filters to provide means to plugins to report their personal data.

@allendav was pointing to https://github.com/allendav/wp-privacy-policy-shortcodes for possible shortcodes to expose privacy policy statements in a consistent way.

@schlessera pointed out that localization might be difficult to handle, how to avoid a mix of languages?

Current global idea is that plugins submit the info using hooksHooks In WordPress theme and development, hooks are functions that can be applied to an action or a Filter in WordPress. Actions are functions performed when a certain event occurs in WordPress. Filters allow you to modify certain functions. Arguments used to hook both filters and actions look the same./filters, the adminadmin (and super admin)/controller needs to 'accept' them so that enduser can see the full list, all based on versioning per pluginPlugin A plugin is a piece of software containing a group of functions that can be added to a WordPress website. They can extend functionality or add new features to your WordPress websites. WordPress plugins are written in the PHP programming language and integrate seamlessly with WordPress. These can be free in the WordPress.org Plugin Directory https://wordpress.org/plugins/ or can be cost-based plugin from a third-party.

Additional capabilities (like e.g. manage_compliance) could be needed.

#gdpr-compliance #summary