[wp-trac] [WordPress Trac] #46343: Legal issue on GDPR and WP "privacy" processes
WordPress Trac
noreply at wordpress.org
Tue Feb 26 18:43:37 UTC 2019
#46343: Legal issue on GDPR and WP "privacy" processes
--------------------------+----------------------
Reporter: arena | Owner: (none)
Type: defect (bug) | Status: closed
Priority: normal | Milestone:
Component: Privacy | Version:
Severity: normal | Resolution: invalid
Keywords: | Focuses:
--------------------------+----------------------
Comment (by garrett-eclipse):
Hi @arena
Concerning data export from wordpress.org there's not currently a request
form, but as the verbiage indicated at the bottom of that bullet list you
can simply contact the dpo email.
"If you would like to exercise these rights or understand if these rights
apply to you, please follow the instructions at the end of this Privacy
statement."
"Please contact us if you have any questions about our privacy policy or
information we hold about you by emailing dpo at wordcamp.org."
* Although currently the process is to use the dpo email for export
requests I've opened a Meta ticket to prompt creation of a Data Export
Request form/page. Ticket - https://meta.trac.wordpress.org/ticket/4224
** Concerning why the dpo email is under wordcamp.org there's a meta
ticket to address that - https://meta.trac.wordpress.org/ticket/3660
*** Regarding request forms there's actually a Data Erasure Request form
(https://wordpress.org/about/privacy/data-erasure-request/) and I've just
opened a ticket to disclose it from within the Privacy Policy -
https://meta.trac.wordpress.org/ticket/4223
Concerning a standard method for declaring plugin/theme privacy in the
readme.txt that's being looked into here;
https://core.trac.wordpress.org/ticket/43750
And concerning the external components and service providers used by
wordpress core... We're working on removing all third-party services. Most
js has been bundled with core and the last outstanding item is a Google
Font in the block editor which is being looked at here;
Block Editor - https://core.trac.wordpress.org/ticket/46169
Bundled Themes - https://core.trac.wordpress.org/ticket/46170
*Although the bundled themes ticket is closed we're looking to reopen it
once we've ironed out an approach to bundle the fonts rather than removing
them as that would negatively affect existing aethetics.
In general though core shouldn't have any external scripts/services to
avoid any need to disclose them for GDPR and privacy concerns.
As to wp.org you can refer to it's Privacy Policy -
https://wordpress.org/about/privacy/
And any specifics you can send to the DPO for wp.org sites and services -
currently that's dpo at wordcamp.org but hopefully that'll change soon.
Hopefully I've addressed all of your concerns, most are in the works. But
if I've overlooked anything let me know or if it's specific to wp.org and
not wp core then please direct them to the DPO.
Cheers
P.S. Thanks @pputzer for your input here.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/46343#comment:17>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list