[wp-trac] [WordPress Trac] #43435: Add settings screen for creating a privacy policy

WordPress Trac noreply at wordpress.org
Mon Mar 5 22:34:15 UTC 2018 

#43435: Add settings screen for creating a privacy policy
------------------------------+------------------
 Reporter:  azaozz            |       Owner:
     Type:  enhancement       |      Status:  new
 Priority:  normal            |   Milestone:  5.0
Component:  General           |     Version:
 Severity:  normal            |  Resolution:
 Keywords:  gdpr needs-patch  |     Focuses:
------------------------------+------------------
Changes (by xkon):

 * keywords:  gdpr has-patch => gdpr needs-patch


Comment:

 Adding the information here as means of notes & continuation:

 As discussed in slack:
 https://wordpress.slack.com/archives/C9695RJBW/p1520271733000031?thread_ts=1520270079.000490&cid=C9695RJBW

 - Add "Privacy" page under Tools menu that has:
  - Tabs [maybe / depends on UI/UX]
  - Tab 1
   - A button to create a page and set it as the Privacy Policy.
   - A drop-down to designate an existing page as the PP page. Once one of
 these is done, show a link to edit  the PP page.
   - A tool to anonymize comments by the email.
   - A tool to anonymize user by email (and/or login name).
   - Explanations what each tool does.
  - Tab 2 [changes counter]
   - Gathers all the latest Policy changes from the Plugins
   - Short explanation of how to use all of this information (in relation
 with the PP page created)
   - Vertical Tabs that list in order Core followed by all plugins (maybe
 depending if the updates list is actually that long to be in a single
 output - similar to the setup of the PP informational copy/paste box)

 Ticket #43389 will be eventually brought here as well

 ---

 What do we need from Plugins to report back to us (this list might get
 updated / altered depending of needs, can-dos etc - we can start creating
 our base filters with it)

 - What personal data does this plugin collect? (Cookies, telemetry,
 anything)
 - Why is that data collected? (Consent and legal basis)
 - Is data passed to third parties? (Social media logins are third
 parties!)
 - What personal data is stored on the database and remotely? `*`
 - What privacy options does the plugin administrator have? ( this is for
 Admins eyes only not  the PP page )
 - What consent mechanisms are provided for the users?
 - What privacy options (such as settings) does the user have?
 - What data does the plugin transfer internationally (non-EU?)

 `* A privacy notice should never be forced to include information which
 would have the opposite effect of actually jeopardizing safety, for
 example, "credit card numbers are stored on the database".`

--
Ticket URL: <https://core.trac.wordpress.org/ticket/43435#comment:10>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform

More information about the wp-trac mailing list