Does anyone have any GDPR solutions?

Does anyone have any GDPR solutions? 

Is no one else worried about this?? 

Some weeks ago, I had asked Boonex specific questions related to the GDPR which were all answered by Alex T. 

He made these then accessible for all members under this link: https://www.boonex.com/trac/dolphin/wiki/DolphinGDPRFAQ. 

This should be helpful when setting up your data protection policy for your website.

Dead Link?

ooops, sorry, here it goes again:

https://www.boonex.com/trac/dolphin/wiki/DolphinGDPRFAQ

_{:) THX Annalotta}

If your are located in Germany you should disable the connection to the Google font server as well! And you better need a cookie consent script as well.

Greetings

Klaus

@klaush

I'm located in Austria, so thx for the tips.

I have got a cookie consent script. But could You provide me a tip where to handle the google font server?

greets

peter

Thanks, that link is helpful and I've seen the other boonex posts regarding gdpr. I'm very surprised no one has stepped up to the plate to create a simple pop-up for cookie consent as many wordpress developers have already done. 

I'm willing to pay for this. Let me know how much. Thanks in advance. 

I just found this, https://www.boonex.com/m/cookie-notification-add-on-for-splash-builder-mod 

going to go ahead and use that for now and hope that someone comes up with a solution that allows users to download / delete their own data. 

Let me know if you guys have any ideas. I don't want to get sued for 20 million! Deadline has come and gone . . . 

It sucks that one lives in such places.  There will soon be new EU law that will pretty much make it impossible to do anything on the net.  Even if you are outside the EU FaceSucks and Twatter will pull your content down.

https://saveyourinternet.eu/about-this-campaign/

 Hi Klaus,

I would also appreciate it if you could let us know more details about how to disable the connection to the Google font server. I was not aware of this....

I am also based in Germany and with the new GDPR there is a lot to watch out....

I suppose we also would need to have that "order processing contract" (in German: Auftragsdatenverarbeitungs-Vertrag) with Boonex.... (https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/model-contracts-transfer-personal-data-third-countries_en)...

And being a social network that collects data, we should also have a data protection officer (Datenschutzbeauftragter)..... 

Greetings, Annalotta

All but one of my sites are localised, but one which doesn't collect any data is international. Having read this thread, I've just created a flash page for that site. The message may not stand up to the EU's big brother stance, but they can come looking for me if they wish. 

You can view it here:

http://digital-junction.com/demo/

The splash has nothing to do with Dolphin but if you'd like a copy, you can do this with it:

• Alter the message and change text size and colour.
• Replace the background.
• Easly replace your URL.

It's free and comes without warranties of any kind. Sadly it's not all that responsive, but . . . .

It's only a temporary solution and please treat it as such.

Just comment here and I'll put it up. You simply put four (4) files in the Dolphin Root. They do NOT interact with the site, thus this is neither a hack, module or mod.

Thank you John for your input ! It looks like a very good solution.

I myself set up a cookie banner with https://cookieconsent.insites.com/ which also works fine.

I would have done the same @Annalota, had I known about it. I tried the site and it gives an excellent range of alternatives. The script also remembers that you've ticked the box and doesn't ask again, possibly for a day or so until the cookie expires.

Just one thing to remember and one you didn't mention . . .  Where does this stuff go?

I'm using the Evo template and the code goes in:

/templates/tmpl_evo/_header.html just above the final </head> a few lines up from the bottom.

I initially tried it in /templates/base/_header.html and it refused to work. The EVO template doesn't call that template.

If you're using Uni, or Alt, the code needs to go in /templates/base/_header.html.

I'll leave my example up for a while just in case people have problems getting the code you suggested working.

One last thing: Here's a link that will generate your cookies policy.

https://termsfeed.com/cookies-policy/generator/

@John,

I am using a customized copy of the Evo-template and pasted it in the Admin Panel, Settings, Basic Settings at Head. It works fine.

I never thought of posting it there. I tried putting something else there once and it ended up on the extreme top left corner. That did it for me. 

Thanks. It will make life easier for everyone else.

Here is an idea, how about trying to do something about your government that is implementing all these Nazi ideas and controls?  Your government put an old woman in prison because she has an OPINION that the holocaust didn't happen and allow the government to get more Nazi like every day.  I wouldn't care if it wasn't hurting those in true free societies. 

I operate a site that is open to everyone in any country that cares to join but I will be damned if we bow down to the Nazi laws of German and the EU.  I won't put anything in place to cater to these Orwellian practices designed to silence the voices of the people.

I also added the code of the share buttons from www.sharethis.com below the cookies code in the header. I think it is a nice feature but then again, if you are based in the EU, you need to mention it in your Privacy Policy ;)

@Annnalotta Thank you! Using this on my site bitcoinonline.io now and enabling registrations again! 

I found the easiest way (even though I like geek girl refuse)... For $6.95 month get a tracemyip.org level 2 account and everything is there ready to be set up... That will give you 10 sites to get in compliance much cheaper than the $25 month most places are charging. 

If you are NOT located in the EU and unless you are a Large Multi-National Corporation or you are Monetizing your User Data like Facesucks and Twatter does, I don't think GDPR even applies.

https://www.joyfulbikeshedding.com/blog/2018-04-17-should-non-eu-websites-ban-eu-visitors-under-the-gdpr.html

Does the GDPR apply to non-EU companies?

Maybe, it depends. I know that some people find it ridiculous that an EU law can apply to companies in countries where they have no jurisdiction, and some people even see it as a continuation of European colonialism. This is understandable, but consider the following.

The Internet has made borders blurry. A company can be physically located in one location, but may serve customers from another location. This is a continuum. On one side, you have for example a Canadian web shop that simply accepts orders world-wide and allows shipping world-wide, and sometimes gets a European customer. This web shop does not have to comply to the GDPR.

On the other side, you have companies like Google or Twitter who are truly multinational. These companies do need to comply to the GDPR, even though their headquarters are based in the United States and even though the servers are located in the United States.

The criterium for whether a non-EU company needs to comply to GDPR is: does the company intent to seriously service EU citizen? This is determined based on multiple factors, such as the website's language (do they have e.g. German translations?), providing pricing in euros, testimonials from EU customers, or having a contract with a parcel company with the specific intention of delivering to EU customers. The mere fact that the website can be used by an EU citizen is not enough to have it fall under the GDPR.

GDPR applies to everyone who processes data from EU citizens. For those who want to know more about this, I once wrote an article in where I express my views on what GDPR and data processing means: https://giftsandgreetingsreview.com/2018/04/12/gdpr/

I'm also in the process of writing a GDPR module for Dolphin, but this seems harder than anticipated. I wonder how far I have to go with this, because thinking about it, your webserver's logfiles contain information about users (IP addresses) and the pages they accessed. This could be considered as processing personal information and there are many other situations like it that I can think of (I know that for performance it's better not to have logging on production servers, but many do this anyway).

So far I have an overview per module that shows you what you have uploaded and the comments you made. It shows you how long information is stored for, the times you logged in, your profile info and changes. It has an option to delete the profile and to download all information about you in one click. I did think about adding information on votes, but this can be difficult since this is IP based.

The issue with IP addresses is that you can't be 100% sure that only one person is using that IP address. If multiple people are using the same IP address this might open up a whole new can of worms because now you start revealing information about other people, using the same IP address.

I'm planning to release this module in the future, but for now I'm interested to find out if there are any specific features people would like to see in such a module. I already anticipated that many have 3rd party modules installed and it will be very easy for others to integrate their modules. In most cases it won't be more than  an extra database entry.

Today I've seen there is something as GDPR Cookie Consent at https://dolphinextensions.com It seems working. I've tried and it blocks coockies of preferences (Lang and Skin), session's cookie, Analytics cookies and Aldo AdSense Cookies. I font know if this is a module, but It has been made by ilbellodelweb. I will try to contact him for more details...

That's an interesting site. 

If you can believe what you read, it sounds like a staff member or associate has "obtained" Ibellodelweb's extensions and plans to market them again:

We are working to start again with the Boonex Dolphin CMS. The company is undergoing corporate reorganization.

They go on to say: 

The know-how and ownership of modules, templates and plugins was acquired by one of the company's members.

Soon a new boonex's profile will propose new solutions (new products) and will reformulate what has been achieved by ilbellodelweb in the past 10 years.

That was dated August 2nd this year. 

Stranger things have been known to happen. Hopefully they'll honour modules where the registration code doesn't work any more.