Code Monkey home page Code Monkey logo

Comments (5)

ColinMaudry avatar ColinMaudry commented on August 22, 2024

It could look like that:

---
# The list of purpose blocks
purposes:
- purpose: Connect users to their accounts
  lawfulness: legitimate interest
- purpose: Collect phone numbers
  lawfulness: legal

# The list of (collected) data blocks
collected:
- data: username
  required: true
  visibility: private
  description: The username is used to identify users during the login process.
  mitigation: Username does not have to be a real or known identity.
- data: password
  required: true
  visibility: private
  description: The password is used to check identity of users during the login process.

# Mutli line is possible like that
  mitigation: |
    Only hashes of the passwords are stored in database (but they transit
    over the network).

    It uses bcrypt to create the hashes.

from gdpr-txt.

marienfressinaud avatar marienfressinaud commented on August 22, 2024

Thanks for your suggestion, but the GDPR.txt file is mostly intended to humans, not machines. The only usecase for a machine I can imagine would be to validate a file. But for now, the format is so simple that there is almost nothing to validate: I'm not even sure it's pertinent.

In fact, maybe it should be even more permissive to avoid confusing people about the purpose of the file. It's only to help hosting providers to create their own records of processing activities. It should not be used directly to inform users about their data because it would necessarily be incomplete (e.g. logs from the web server). It means that a potential example.com/GDPR.txt file would be a different kind of file, created by hosting providers, not by the developers.

from gdpr-txt.

marienfressinaud avatar marienfressinaud commented on August 22, 2024

I precise: a more structured format would be pertinent for a example.com/GDPR.txt file (e.g. an extension could read that file to expose clearly the GDPR information to users). But it would also be more complex to write, maintain and it should be more robust about the law. I have less ambition at the moment :)

from gdpr-txt.

marienfressinaud avatar marienfressinaud commented on August 22, 2024

(btw, I just moved the repository to Framagit https://framagit.org/marienfressinaud/gdpr-txt)

from gdpr-txt.

ColinMaudry avatar ColinMaudry commented on August 22, 2024

Makes sense, thanks :)

from gdpr-txt.

Related Issues (1)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.