This repository has been archived by the owner on Apr 26, 2022. It is now read-only.
EU GDPR - General Data Protection Regulation #757
Comments
syntaxerror
changed the title
GDPR - General Data Protection Regulation
EU GDPR - General Data Protection Regulation
Mar 15, 2018
Such additions should be done through extensions and it seems the one you shared solves the problem, thanks Rune. |
I strongly disagree, as this is a requirement for all running a store who is selling to EU citizens. I encourage you to reopen and discuss this more thoroughly, let others also join in with their opinion. |
Reopened, feel free to discuss. |
Auto cleaning old temp orders would probably be required, as storing of unneeded data seems illegal. |
A nice way to deal with it, adding value to the project, by releasing an official paid for extension: |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Enforcement date for EU GDPR is 25 May 2018: https://www.eugdpr.org/
Has anyone looked at how this will affect Arastta, and stores running on it?
As far as I have seen there is a need to clarify which personal data who is being collected and stored, where IP also is considered to be personal data, for both random visitors and registered customers, plus guest checkouts. There might also be need for some automatic deleting of stored IP-addresses after a given time.
The registered customers should also have access to their stored data (including IP addresses), or being able to request this info - meaning store owner should have access to get it all out in a simple report.
Luckily the customers already have access to most of their data through their account (excluding IP's), and can change it from there too. But there should probably also be a easy way for them to delete their account, and all data except the data on the orders - needed for the order delivery and accounting (book keeping rules being stronger than GDPR in that matter).
Thoughts?
Edit/Addition: Some of it is covered by this OC extension, if it works on Arastta I don't know. But it serves as a source of ideas for some of the parts needed to comply to EU GDPR: https://www.opencart.com/index.php?route=marketplace/extension/info&extension_id=32993
The text was updated successfully, but these errors were encountered: