Skip Navigation

[Resolved] GDPR complient

This support ticket is created 6 years, 10 months ago. There's a good chance that you are reading advice that it now obsolete.

This is the technical support forum for Toolset - a suite of plugins for developing WordPress sites without writing PHP.

Everyone can read this forum, but only Toolset clients can post in it. Toolset support works 6 days per week, 19 hours per day.

Sun Mon Tue Wed Thu Fri Sat
- 10:00 – 13:00 10:00 – 13:00 10:00 – 13:00 10:00 – 13:00 10:00 – 13:00 -
- 14:00 – 18:00 14:00 – 18:00 14:00 – 18:00 14:00 – 18:00 14:00 – 18:00 -

Supporter timezone: Asia/Kolkata (GMT+05:30)

This topic contains 4 replies, has 3 voices.

Last updated by AmbrosF8971 6 years, 10 months ago.

Assisted by: Minesh.

Author
Posts
#615881

Hi,

I was thinking as an added feature to toolset and for the process of getting our websites closer to being GDPR compliant some of the fields that we create can have the option of pseudonymisation.

That what when we create contact forms etc that gather users personal data and gets stored as a type would be safe to do so.

Thanks.

#615894

Minesh
Supporter

Languages: English (English )

Timezone: Asia/Kolkata (GMT+05:30)

Hello. Thank you for contacting the Toolset support.

As I understand - do you mean that, when someone save contact form you want to save that entry as new entry of CPT, basically you want to clone that entry to CPT?

#615901

Hi Minesh,

There is a new European Law that will be live by the 20th of May and applies to all companies that serve to any European citizens.

It requires privacy protection to all EU citizens, otherwise, companies will be liable up to 20million euros or 4% of their Revenue.

One of the criteria of privacy protection is to make sure User stored is safe when stored, when i say user data this includes:
Name/Email/Address/IP address/ Personal ID any one of these data has to be stored and stored safely with the user's consent.

How does this effect Toolset:

A lot of toolset buyers use the CRED form as a contact form, in the contact form, they would usually request the user's name/email and store this data in a custom post type that they made through Types. By may 21st will be considered as heavily sensitive data and companies doing so will be liable for storing data in a non secure form.

My Suggestion:
Have an option for when you create a custom field to check whether you would like to pseudonymize (hash) that field's data into the database.

I am sure there will be a lot of use cases for this, it is a major law, it even effects any company that deals with any European citizen, the same way it will effect onthegosystems as I am a European customer using Toolset/WPML.

-Garen

#616007

Minesh
Supporter

Languages: English (English )

Timezone: Asia/Kolkata (GMT+05:30)

Ok - I got your concern and I will send your concern for assessment to concern department.

#1131419

Hello, this is an interesting and very important question! What has Toolset done so far to make the software GDPR compatible? Thank you