[wp-trac] [WordPress Trac] #43492: Core Telemetry and Updates
WordPress Trac
noreply at wordpress.org
Wed Apr 4 18:16:39 UTC 2018
#43492: Core Telemetry and Updates
------------------------------+------------------------------
Reporter: xkon | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Upgrade/Install | Version:
Severity: normal | Resolution:
Keywords: gdpr 2nd-opinion | Focuses:
------------------------------+------------------------------
Comment (by robscott):
@DavidAnderson the domain and IP I kind of packaged together there... for
brevity. The original point stands - if its being stored, as a package,
along with IP & domain, consent is '''probably''' required.
If consent is required, it must be opt in. It cannot be opt out.
If the data is necessary for security purposes - this does matter in terms
of consent etc - it is still necessary to do the other stuff, like
identify the data controller.
Ideally, shed the personally identifiable stuff before storing it. Then
you are not "controlling" this data. You're using it for the purposes of
the transaction. Which is fine. As far as the GDPR and my understanding of
it are concerned.
Its worth remembering its about Data Protection. The step of not storing
this data (longer than was necessary) would be precisely to protect it.
The IP / domain is needed to actually... well do the WordPress update!
It may well be important, if consulting legal teams, if they were trained
in the USA or in Europe. Long arguments about the existence of a "Right to
Privacy" may otherwise ensue.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/43492#comment:38>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list