Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

GDPR compliance #270

Closed
3 tasks done
johnjohndoe opened this issue May 22, 2018 · 10 comments
Closed
3 tasks done

GDPR compliance #270

johnjohndoe opened this issue May 22, 2018 · 10 comments
Assignees
@k-nut
Labels
Hacktoberfest Help wanted Legal Severity: ★★★ Tracking Analytics, statistics, ...

Comments

@johnjohndoe
Copy link
Member

johnjohndoe commented May 22, 2018
edited

Update the website before May 25, 2018 ⏳ to comply with the General Data Protection Regulation (GDPR).

  • Let users opt-out and opt-in from being tracked by Matomo analytics.
  • Add a data privacy statement. (check OKFN website for current version)
  • Check if Matomo is configured to mask two bytes of the users IP address.

See discussion in https://openknowledgegermany.slack.com in #gdpr channel. @knutator posted a text template there which might be used.
@tursics
Copy link
Collaborator

tursics commented May 22, 2018
edited by johnjohndoe

the text template:

< Projekt > nutzt statt den üblichen externen Dienstleistern die datenschutzfreundlichere Technologie von Matomo, um statistische Auswertungen der Seitennutzung zu erhalten. Wenn sie dies nicht wollen, <a href=“https://traffic.okfn.de/index.php?module=CoreAdminHome&amp;action=optOut&amp;language=de”>klicken Sie bitte hier und entfernen Sie den Haken. Näheres in unserer Datenschutzerklärung.

Instead of an external provider < Projekt > uses the data-friendly technology of Matamo to create usage statistics for this page. If you do not want this <a href=“https://traffic.okfn.de/index.php?module=CoreAdminHome&amp;action=optOut&amp;language=“en”>click here and delete the checkmark. Read more in our data privacy statement

@johnjohndoe
Copy link
Member Author

johnjohndoe commented May 23, 2018
edited

Related

@dirkschumacher
Copy link
Member

Why not just remove Matomo and republish?

@johnjohndoe
Copy link
Member Author

I can't say if this would be enough to be compliant with the law - IANAL.
I prefer that whoever works on the issue does a bit of research to be sure.

@knutator2
Copy link

knutator2 commented Jun 14, 2018
edited by johnjohndoe

to make the Website Matomo compliant only the snippet from @tursics is necessary, but @johnjohndoe is right. To make the page GDPR compliant, a data privacy statement is necessary. We updated our data privacy for OKFN at okfn.de accordingly, so we could use it and extend it with a paragraph, explaining the page is hosted via GitHub.

@johnjohndoe
Copy link
Member Author

@knutator2, thank you for the clarification. Please note that this website is currently hosted on a OKFN server - not via GitHub.

@knutator2
Copy link

ah perfect, then only the maintainer in the top part needs to be changed

@johnjohndoe
Copy link
Member Author

Meanwhile, the OKFN tends to switch to opt-in for Matomo. (Michael Peters)

If anyone wants to work on the GDPR topic so the website can go online again please do so.
I will not be able to work on the issue all over July.

@johnjohndoe
Copy link
Member Author

Here is how bundesregierung.de deals with it. They also use Matomo.

bundesregierung de-datenschutzhinweis

Bundesregierung / Datenschutzhinweis

@johnjohndoe
Copy link
Member Author

Current state of the website

website

@k-nut k-nut mentioned this issue Dec 1, 2018
Merged
@johnjohndoe johnjohndoe added the Tracking Analytics, statistics, ... label Jun 2, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@k-nut k-nut

Labels
Hacktoberfest Help wanted Legal Severity: ★★★ Tracking Analytics, statistics, ...
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@johnjohndoe @k-nut @dirkschumacher @tursics @knutator2