Complementary questions regarding GDPR

Resolved gurra
(@gurra)

4 years, 4 months ago
I have checked what is written about GDPR in this support forum. The most important seems to be clear: what is collected and stored (IP numbers) are only collected/stored on my own web site server (correct me if I am wrong), i.e. no personal data is collected/stored outside EU, if my server is inside EU. Good! It solves my main issue – I don’t have to make a GDPR data processing agreement with you as a plugin provider. The responsibility regarding collected data is all mine.

But, to know how I shall perform my responsibilities regarding GDPR, I have some more questions:

Are ALL IP numbers of visitors collected and stored on my web site server, or only those of suspected hackers?

According earlier discussions in this support forum, it seems to be no automatically erasing of IP numbers after a defined time period. e.g. 90 days. Have you made any changes in the plugin regarding this since last discussed in the forum for about one and an half year ago?

If “no” on the last question: Is there an EASY way to erase collected IP numbers stored on my web site server?

Thanks
- This topic was modified 4 years, 4 months ago by gurra.

Viewing 4 replies - 1 through 4 (of 4 total)

profiledata
(@profiledata)

4 years, 4 months ago

Almost all web servers log IP addresses as a part of normal operation. Usually these logs are gzipped and deleted after a given interval. This all happens as a part of normal webserver operation, even if you are not using a webapp like WordPress.

Depending on your platform you might look into setting up a cron job to delete or rotate your logs differently. 90 days seems like a long time to keep stale log files around.

Interested to see what others are doing with this…

Plugin Contributor mbrsolution
(@mbrsolution)

4 years, 4 months ago

@gurra, thank you for contacting us.

Are ALL IP numbers of visitors collected and stored on my web site server, or only those of suspected hackers?

Unfortunately your question is not related to our plugin. I want you to get the best answer to your question, please try the following link https://wordpress.org/support/forum/miscellaneous/.

Thank you

Thread Starter gurra
(@gurra)

4 years, 4 months ago

Thanks profiledata and mbrsolution for your answers and comments!

profiledata – As I interpret your comment I guess one good idea would be to check with my web hotel how they deal with stored IP numbers. I will do. Regarding your suggestion to set up a cron job I will investigate this idea further.

mbrsolution – Sorry, my first question was bad formulated, and actually superfluous. The plugin presentation tells (sorry, I should have read more close) the plugin “may collect IP addresses for security reasons..”, which I interpret exclude a collecting of all visitors IP numbers (if others, as WP, plugins and the web hotel collects I understand you can’t respond to). The collecting for security reasons, of course is no problem for me, as long as the addresses only is stored on my own web site server, which I understand should be the case.

Regarding my other question, I guess I shall interpret that you didn’t comment this, that no “purging system” has been added to the plugin. Thinking about “janalwin” comment and the answer to this, on https://wordpress.org/support/topic/gdpr-dsgvo-compliance/#post-10245024 . Perhaps the issue of deleting stored IP numbers easily can be solved by a check with my web hotel. Otherwise I guess some kind of “purging” system” could be a good idea. As said above I will also check the cron job alternative.

Thanks again!

Plugin Contributor mbrsolution
(@mbrsolution)

4 years, 4 months ago

That is okay 🙂

If you don’t need any more help, can you mark this support thread as resolved.

Thank you

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Complementary questions regarding GDPR’ is closed to new replies.

Tags