Customizing SMF > Building Your Community and other Forum Advice

General Data Protection Regulation (GDPR)

(1/2) > >>

zappaDPJ:
In two months from now the new GDPR becomes enforceable law within the European Union (EU) with some implications for those who are outside of the EU.

With the exception of IPS it appears no other forum platform or add-on creator has gone to any lengths to help forum owners comply with the law. This makes me wonder what individual owners are doing to ensure their forums are ready for 25th May when it becomes enforceable.

Personally I've found simply interpreting the regulations in relation to running a forum to be a difficult and frustrating process. At this late stage it's not even clear to me exactly what steps I must take to fulfil an erasure request.

I'm aware that the many forum owners don't believe this law applies to them but for those that do I'd be grateful for any insight you can give into how you've prepared your forums for it.

vbgamer45:
If you are an EU user or a major corporation I would look into it. Otherwise I would only worry if an issue arises.

matti:

--- Quote from: zappaDPJ on March 22, 2018, 02:05:56 PM ---I'm aware that the many forum owners don't believe this law applies to them

--- End quote ---

I believe the GDPR only applies to you if you're a company with over 250 employees, or if you process 'special categories' of data like health data, religious beliefs etc.

zappaDPJ:

--- Quote from: matti on March 26, 2018, 05:14:35 AM ---I believe the GDPR only applies to you if you're a company with over 250 employees, or if you process 'special categories' of data like health data, religious beliefs etc.

--- End quote ---

Unfortunately that's not correct. The UK's ICO has issued specific guidance on compliance for forum owners: https://ico.org.uk/media/for-organisations/documents/1600/social-networking-and-online-forums-dpa-guidance.pdf [nofollow]


--- Quote from: vbgamer45 on March 22, 2018, 03:03:53 PM ---If you are an EU user or a major corporation I would look into it. Otherwise I would only worry if an issue arises.

--- End quote ---

If you wait until an issue arises then it's may too late and that may apply to forums both inside and outside of the EU.  Fines for non-compliance are likely to be proportional to the steps taken to implement the regulations. If it's evident that there is no compliance, expect a harsh penalty.

As I said at the start, the majority of forum owners are either oblivious to GDPR or believe that it doesn't apply to them. It does and simply interpreting the regulations is proving to be a nightmare let alone implementing the required functionality which simply doesn't exist in most forum platforms.

BryanD:
ZappaDPJ, that link only provides info in regards to DPA and not GDPR, while alot of it is done their is more a community member can do in regards to how forum owners use and store the data that comes in with GDPR

Navigation

[0] Message Index

[#] Next page

Go to full version