[wp-trac] [WordPress Trac] #49357: Admin intervention for personal data export really needed?

WordPress Trac noreply at wordpress.org
Thu Feb 6 11:01:20 UTC 2020

#49357: Admin intervention for personal data export really needed?
 Reporter:  rconde       |       Owner:  (none)
     Type:  enhancement  |      Status:  new
 Priority:  normal       |   Milestone:  Awaiting Review
Component:  Privacy      |     Version:  trunk
 Severity:  normal       |  Resolution:
 Keywords:               |     Focuses:

Comment (by rconde):

 "We are not creating core functionalities for any specific piece of

 - In this specific case (GDPR and data portability), WordPress core
 developers are creating, indeed, core functionalities for a specific piece
 of legislation. Wordpress has the "Export data" already implemented in its

 For the "As far as 3/4 goes" and "a higher level of automation may be
 highly desirable.", do you think a medium to large organizations, say a WP
 installation with 100.000 users where 5% of them request their data
 download out of curiosity, a DPO is checking manually 5.000 request just
 in case something is missing? I don't really think that.

 You said about multiple sources of personal data. Why would something be
 missing? This would means that the plugin is poorly written.

 A DPO inserting/modifying personal data into a zip file puts in danger the
 data itself. A DPO is a human and can mix personal data from another users
 maybe, where a well structured SQL query and code don't.

 As I've said, **I think we are creating an artificial and avoidable
 workload in most cases.**

 I think that by adding **at least** a bulk "Send Export Link" to all user-
 confirmed requests is the minimum implementation to facilitate the task of
 the administrator in this case.

Ticket URL: <https://core.trac.wordpress.org/ticket/49357#comment:5>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform

More information about the wp-trac mailing list