[wp-trac] [WordPress Trac] #43738: Make the GDPR Export/Delete functionality available in network-wide for super admins

WordPress Trac noreply at wordpress.org
Tue Apr 17 19:57:47 UTC 2018 

#43738: Make the GDPR Export/Delete functionality available in network-wide for
super admins
-------------------------+------------------------------
 Reporter:  TZ Media     |       Owner:  (none)
     Type:  enhancement  |      Status:  new
 Priority:  normal       |   Milestone:  Awaiting Review
Component:  General      |     Version:
 Severity:  normal       |  Resolution:
 Keywords:  gdpr         |     Focuses:
-------------------------+------------------------------

Comment (by coreymckrill):

 For some multisite use cases, GDPR compliance might all be handled at the
 individual site level. However, as mentioned above, there are many use
 cases where it makes more sense to handle it at the network level.
 Specifically:

 * Setting a privacy policy, or at least a template, that would be used on
 every site in the network
 * Personal data export/anonymization/erasure across the entire network

 Other multisite-specific questions/considerations:

 * The user requesting the data export/anonymization/erasure is the
 owner/admin of one of the sites within the network. What happens to the
 site?
 * Super admins can access the user data on any site in the network. Does
 this need to be called out as something that should be disclosed in the
 Privacy Policy?
 * Similar to the question about
 [https://core.trac.wordpress.org/ticket/43767 abandoned user accounts],
 what should be done (if anything) with abandoned sites?

 So, in terms of applying the [https://make.wordpress.org/core/2018/03/28
 /roadmap-tools-for-gdpr-compliance/ roadmap] to a multisite context,
 here's some ways we could approach it:

 **Add tools for creating a privacy policy**

 There could be a new Network Admin menu item "Tools" with a "Privacy"
 page, similar to #43435. This could be a place to create a template that
 would pre-fill the Privacy Policy pages on new sites in the network.

 **Add tools to core to facilitate compliance, and privacy in general**

 These could look similar to the single site tools that are in the works,
 but would work across all sites in the network. Under the hood, that might
 look something like this:

 * Search across the network for the user's ID and/or email
 * For each site that contains data from that user, run the single site
 functions for export/anonymization/erasure, and if for export, compile it
 all into one file (or multiple, if its a huge amount of data?)
 * This would perhaps all happen asynchronously via Ajax/REST requests,
 since it would potentially involve a lot of big expensive queries

 **Add documentation/help for site owners on how to use these tools**

 Network admin documentation probably wouldn't be that different.

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/43738#comment:3>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform

More information about the wp-trac mailing list