GDPR Compliance

  • Resolved FrankEck

    (@frankeck)


    5 years, 11 months ago

    Hi,

    regarding to the new European General Data Protection Regulation (GDPR) coming May 2018, could you please advise if:

    – WP-UserOnline are setting cookies with personal information from visitors, like IP-address,…?

    – Are they collecting, storing or sending personal information from visitors locally or externally?

    best regards, Frank

Viewing 9 replies - 1 through 9 (of 9 total)
  • Plugin Author Lester Chan

    (@gamerz)

    5 years, 11 months ago

    The plugin is storing IP Address if not there is no way to prevent duplicated users. Sadly, I have no time to fix it until end May as I am away on holiday now.

    So if you have issues with GDPR, don’t use the plugin in the meantime.

    Thread Starter FrankEck

    (@frankeck)

    5 years, 11 months ago

    The IP Adress will be stored localy/in the WP Database?

    Plugin Author Lester Chan

    (@gamerz)

    5 years, 11 months ago

    Yeap. Your own WP DB. All my plugin doesnt have cloud services

    Thread Starter FrankEck

    (@frankeck)

    5 years, 11 months ago

    Thanks for the quick answer, this helps a lot!!!! And sorry for disturbing you during your holidays!

    angrywarrior

    (@angrywarrior)

    5 years, 10 months ago

    Ip-address is not included in the GDRP requirement.

    There is a lot of confusion around this with the IP-address, but it is not required.
    You may not store things like gender, or sexual preference etc (because it can help identify a person). But an ip-address is not considered a personal information per see as it cannot directly identify a person, (Most people use dynamic Ip for example).

    Plugin Author Lester Chan

    (@gamerz)

    5 years, 10 months ago

    @angrywarrior Hmm I heard conflicting things about IP though. That I can store but it must be anonymized or hashed.

    angrywarrior

    (@angrywarrior)

    5 years, 10 months ago

    Hi @gamerz

    Agreed.
    People do seem pretty confused about this.

    Well I have spoken to my own lawyer out this, plus we also use this company Iubenda that also have an army lawyers employed and they are saying that IP-address is not part of it. Mainly because in general terms an IP-address is just not enough to identify a person, most people are assigned dynamic ip-addresses, while companies uses fixed IP-addresses. However companies as you may know is not included or protected by GDRP. They (iubenda), also have some very good information about it that you can read: https://www.iubenda.com/en/help/5428-gdpr-guide

    Kind regards
    AngryWarrior

    • This reply was modified 5 years, 10 months ago by angrywarrior.
    Plugin Author Lester Chan

    (@gamerz)

    5 years, 10 months ago

    Awesome! Thank you @angrywarrior!

    angrywarrior

    (@angrywarrior)

    5 years, 10 months ago

    You are most welcome! 🙂

    Kind regards
    AngryWarrior

Viewing 9 replies - 1 through 9 (of 9 total)
  • The topic ‘GDPR Compliance’ is closed to new replies.

Tags