Robust
Well-known member
I have verified the deletion of accounts can be avoided all together (you can deny requests) with a lovely little loophole the ICO provided me.
What's the loophole?
I have verified the deletion of accounts can be avoided all together (you can deny requests) with a lovely little loophole the ICO provided me.
The only thing that just occurred to me is what to do when it comes to a business that outsources any of their products or services. Say for example some of the products I offer I don't keep in stock, but sell through my website. When a customer places an order, I place that customers order with my supplier who ships it. So I'm sharing that customers details with a 3rd party.
I imagine I'll have to now disclose this, but to what extent? Can I just say that I have deals with trade suppliers and certain transactions will involve them and I pass on customers shipping addresses? Do I have to say which products it applies to? Will I have to name my suppliers?
I can see this becoming very problematic from competitive standpoint. I wouldn't want my competition knowing this information about my supply chain.
This could easily apply to sites that have merch stores or other drop shipping services integrated into their community.
What happens when a trade supplier has a data breach? I'm guessing you then have to contact all of your customers to let them know that one of your suppliers who has their personal data has had a data breach and name that supplier. Of course the customers should know this, but it could also destroy businesses that rely on sourcing and reselling products and services like this. A single email blast informing the entire customer base of a breach like that could mean none of them ever place an order through you again.
What information do we collect from Merchants?
We collect the following data to confirm your identity, contact you, invoice you, and otherwise provide our Services.
To give you access and to improve our Services, we may collect data about:
- Company name
- Address
- Email address and phone number
- Payment details
For us to be able to provide you our Services and support, to process orders, for you to better serve your Customers, and to improve our Services, we collect information about your Customers:
- How and when you access your account
- Information about the device and browser you use
- Your network connection
- Your IP address
When you give us your permission, we might use personal data for other purposes as well.
- Name, surname, company name
- Shipping and billing address
- Email address and phone number
- Payment details
- IP address and device data
- Other information that you share with us or that customers provide while using our Services or during checkout
Upon starting to use our Services we may process your email address to send you informative materials, such as newsletters, advertisements and others. At any point in time you can unsubscribe from receiving the above-mentioned information in our email footers and through your notification settings on Merch Store. We will not use the contact details of your Customers to directly advertise our Services to them.
Sharing personal data with third parties
In order for MerchStore to provide you with our Services, we work with third parties with whom we may share personal data to support these Services. Your personal data may be shared with third parties who provide hosting and server co-location services, communications and content delivery networks, data and cyber security services, billing and payment processing services, fraud detection and prevention services, web analytics, email distribution and monitoring services, session recording services, marketing services, our legal and financial advisors, among others (together – “Third Party Service Providers”). The Third Party Service Providers may only receive the minimum amount of personal data necessary, depending on their particular roles and purposes in facilitating and enhancing our Services and business, and may only use it for such purposes. We will only share personal data to Third Party Service Providers that have undertaken to comply with obligations set out in applicable data protection laws.
Note that while our Service may contain links to other websites or services, we are not responsible for each respective website’s or service’s privacy practices, and encourage you to be aware when you leave our Services and read the privacy statements of each and every website and service you visit. This Privacy Policy does not apply to third-party websites and services.
If you are a Merchant, by using our Services you are providing us with irrevocable consent to use any Third Party Service Provider at our discretion for the purposes of providing the Service.
MerchStore remains responsible for the processing of personal data carried out by Third Party Service Providers that MerchStore has engaged with for respective data processing in accordance with applicable laws.
In certain circumstances, we may also be required to share information with third parties to conform to legal requirements or to respond to lawful requests by public authorities as well as to protect our, or a third party’s, lawful interests.
I too would like to know how a user can export their data - @Slavik said XF is already compliant so it must have that feature somewhere? right?
The GDPR states that you have to "Provide an electronic copy (in machine readable format) of personal data to the data subject, and upon request, transmit these electronic files to another data controller. "All personal data XF collects is shown at the user account settings screens. There is no need to "export" anything if everything is clearly shown to them at the screen.
1.- Each website should have three pages: 1.- Terms of Use / Legal Advice, 2.- Privacy Policy, 3.- Cookies Policy. My legal advisor have written all pages for me, and there can be added to Xenforo with the standard help pages that xenforo provides. Because of that, that point is solved in my case.
2.- Store the consent to the Privacy Policy when a users registering. Here I have a lot of doubts. Although Xenforo provides a required checkbox in the register form, that the user has to accept in order to register, there is a little problem. My legal advisors believe that to "cover my back", it would be ideal to store this consent in the following way:
UserID | Privacy Policiy Consent (flag) | IP | Timestamp
This flag should be set when the user confirms the account after receiving the account activation email. Ideally a copy of the email sent to the user should be stored somewhere.
Questions:
- Does Xenforo store somewhere the data UserID | Privacy Policy Consent (flag) | IP | Timestamp? I know that there is a xf_user_confirmation table, but in my forum it is empty.
- Is there a way to send a copy of the activation email to the admin of the forum?
3.- The register form should be expanded. It is not enough to show the checkbox that says "I agree with the privacy policy". A short and understandable summary with the more important points of the privacy policy should stay between the register form and the "I agree" checkbox. I think this is doable with the current available tools.
4.- All the email notifications sent by the forum should be updated, and include in the footer not only the links to the privacy policy and so on, but also a short summary, like in the registration form.
5.- The user has right to download all his data. The tool suggested in this thread should help: https://xenforo.com/community/resources/kl-admin-tools.6352/
6.- The user has the right to cancel the account. Ideally, the user should be able to do this himself (by clicking on a button or something like that). But it is also acceptable to provide a form to contact with the admin, and the admin has to do it in a "reasonable period of time". That means: as soon as posible.
6.1.- If the user has not written a lot of PI in his posts, it should be enough with to anonymize the user. Otherwise, al the posts should be removed too.
7.- Newsletters: I you have a mailing list and you send newsletters, you have to collect the consent of the users explicitly for this newsletter. It is not enough to subscribe the user to the newsletter when the user registers (opt in by default). If you have a such mailing list, you have until 28 May to send a mail to your users and asks for the consent. And again you have to store somewhere this consent.
@HWS there seems to be a misunderstanding as to what data is encompassed in the term "personal data" here
please read this: https://ec.europa.eu/info/law/law-topic/data-protection/reform/what-personal-data_en
key phrase: Personal data is any information that relates to an identified or identifiable living individual.
This includes any data that can be linked to a person such as IP addresses, cookie IDs, etc. The email address is the identifier, but all other data in your database associated to that email address can also be considered "personal data" and therefore should be allowed to be exported.
You can tell yourself that to buy yourself a conscience but that's not going to cut it in court.The email address is the only personal data stored and used by default XenForo. If you delete the user account in XenForo, no personal data is left at your system. Any user can see all data in his account at the user account screens. He can save all those screens at his computer. There really is no need for a "download" tool.
Regarding cookies there is an exemption for cookies technically needed to run the web site. You don't need prior consent for them. All default XenForo cookies are allowed to be used without prior consent. You just have to notify the user you use them and add them to your privacy policy.
Regarding IP addresses, no admin should ever store or provide full IP addresses anywhere. If you do store and use them you need consent from the users. There is a setting in XF to delete IP data.
However, if they have posted more, I will instead "anonymise" their account by changing their username to their numeric userid
Isn't the problem with this that their username will still exist on the forum whenever they have been quoted?
This is where the software needs to take this into account. It would be not only impractical to view every single post ever made to ensure that the username was anonymised, it would be impossible - especially on a site with thousands of members and posts.
@HWS there seems to be a misunderstanding as to what data is encompassed in the term "personal data" here
please read this: https://ec.europa.eu/info/law/law-topic/data-protection/reform/what-personal-data_en
key phrase: Personal data is any information that relates to an identified or identifiable living individual.
This includes any data that can be linked to a person such as IP addresses, cookie IDs, etc. The email address is the identifier, but all other data in your database associated to that email address can also be considered "personal data" and therefore should be allowed to be exported.
This is a point I was curious about. Xenforo aside, the server you run the software on is going to store IP addresses in logs. If an IP address was considered PII then someone would be able to request their logs. I personally think this is extreme and nothing stored there should be considered PII, but hey, I didn't write the law.Unless it's changed, an IP address is not personally identifiable information. It merely identifies a specific computer/location, NOT the person using it.
This is a point I was curious about. Xenforo aside, the server you run the software on is going to store IP addresses in logs. If an IP address was considered PII then someone would be able to request their logs. I personally think this is extreme and nothing stored there should be considered PII, but hey, I didn't write the law.
We use essential cookies to make this site work, and optional cookies to enhance your experience.