Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

GDPR compliance #270

Closed
johnjohndoe opened this Issue May 22, 2018 · 10 comments

Comments

Projects
None yet
5 participants
@johnjohndoe
Copy link
Member

commented May 22, 2018

Update the website before May 25, 2018 to comply with the General Data Protection Regulation (GDPR).

  • Let users opt-out and opt-in from being tracked by Matomo analytics.
  • Add a data privacy statement. (check OKFN website for current version)
  • Check if Matomo is configured to mask two bytes of the users IP address.

See discussion in https://openknowledgegermany.slack.com in #gdpr channel. @knutator posted a text template there which might be used.

@tursics

This comment has been minimized.

Copy link
Collaborator

commented May 22, 2018

the text template:

< Projekt > nutzt statt den üblichen externen Dienstleistern die datenschutzfreundlichere Technologie von Matomo, um statistische Auswertungen der Seitennutzung zu erhalten. Wenn sie dies nicht wollen, <a href=“https://traffic.okfn.de/index.php?module=CoreAdminHome&amp;action=optOut&amp;language=de”>klicken Sie bitte hier und entfernen Sie den Haken. Näheres in unserer Datenschutzerklärung.

Instead of an external provider < Projekt > uses the data-friendly technology of Matamo to create usage statistics for this page. If you do not want this <a href=“https://traffic.okfn.de/index.php?module=CoreAdminHome&amp;action=optOut&amp;language=“en”>click here and delete the checkmark. Read more in our data privacy statement

@johnjohndoe

This comment has been minimized.

Copy link
Member Author

commented May 23, 2018

@dirkschumacher

This comment has been minimized.

Copy link
Member

commented Jun 13, 2018

Why not just remove Matomo and republish?

@johnjohndoe

This comment has been minimized.

Copy link
Member Author

commented Jun 13, 2018

I can't say if this would be enough to be compliant with the law - IANAL.
I prefer that whoever works on the issue does a bit of research to be sure.

@knutator2

This comment has been minimized.

Copy link

commented Jun 14, 2018

to make the Website Matomo compliant only the snippet from @tursics is necessary, but @johnjohndoe is right. To make the page GDPR compliant, a data privacy statement is necessary. We updated our data privacy for OKFN at okfn.de accordingly, so we could use it and extend it with a paragraph, explaining the page is hosted via GitHub.

@johnjohndoe

This comment has been minimized.

Copy link
Member Author

commented Jun 14, 2018

@knutator2, thank you for the clarification. Please note that this website is currently hosted on a OKFN server - not via GitHub.

@knutator2

This comment has been minimized.

Copy link

commented Jun 14, 2018

ah perfect, then only the maintainer in the top part needs to be changed

@johnjohndoe

This comment has been minimized.

Copy link
Member Author

commented Jul 10, 2018

Meanwhile, the OKFN tends to switch to opt-in for Matomo. (Michael Peters)

If anyone wants to work on the GDPR topic so the website can go online again please do so.
I will not be able to work on the issue all over July.

@johnjohndoe

This comment has been minimized.

Copy link
Member Author

commented Aug 24, 2018

Here is how bundesregierung.de deals with it. They also use Matomo.

bundesregierung de-datenschutzhinweis

Bundesregierung / Datenschutzhinweis

@johnjohndoe

This comment has been minimized.

Copy link
Member Author

commented Oct 4, 2018

Current state of the website

website

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.