[wp-trac] [WordPress Trac] #43175: Discussion - Pseudonymisation
WordPress Trac
noreply at wordpress.org
Tue Apr 24 16:28:00 UTC 2018
#43175: Discussion - Pseudonymisation
-------------------------+------------------------------
Reporter: xkon | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version:
Severity: normal | Resolution:
Keywords: gdpr | Focuses:
-------------------------+------------------------------
Comment (by David 279):
Replying to [comment:7 ericdaams]:
> Hard to see how WordPress core can do this out of the box. Perhaps
something like Jetpack/Akismet could fill this gap as a 3rd party service
securely hosting the Decryption Key, but that seems contradictory to the
open source, "own your data" nature of WordPress as it exists today.
Oh I agree but this is what the working party on GDPR are saying, so the
question is whether or not it's possible to achieve in Wordpress if you
are not hosting on your own server.
I was discussing this last night with someone where they were saying that
they host their application on one server that was internet accessible,
the encrypted user data was stored on a second server only accessible from
the first and the encryption key for the user data was stored on a third
server
I don't believe that one needs to go to the length of having user data on
a separate server (possibly a separate database) but the requirement to
have the decryption key stored elsewhere is very clear
--
Ticket URL: <https://core.trac.wordpress.org/ticket/43175#comment:8>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list