Hi,
are there any plans to make Piwigo GDPR compliant?
In my opinion there are some things that are needed to be updated.
For example:
-Commenting function
-cookie acceptance
-contact form
Cheers
Ralf
Offline
Hello
could you be more specific?
does it applies to individual too or only companies?
Offline
we will certainly follow the examples of the main CMS such as Wordpress
oh and since piwigo.com runs in EU plg will have to work on that
Offline
Users do not need to consent to cookies, neither with the current regulation nor with GDPR. Any function that by its very nature implies user consent is exempted.
Offline
maybe
i also read about "exporting and anonymizing of personal data" also
Offline
Ralf, you're right, at one point we need to talk about the GDPR. I'm already working on it for Piwigo.com, but it should also be discussed at Piwigo level.
1) Cookies
There is no personal data attached to Piwigo cookies, only the Piwigo session id + a few display preferences. This is not related to GDPR as far as I understand.
2) Comment/Contact
Here we're talking about the email address given by the poster.
The email address is not mandatory on the comment form.
The email address is mandatory on the contact form, but it's quite obvious why we need it.
The GDPR doesn't say "you can't store personal data, such as an email address" but "only ask personal data when necessary".
3) IP address
This is maybe the most complex question. Piwigo stores the IP address in the visit history table. The IP address is now considered as a personal data (which is a bad idea in my opinion...). We don't ask for it and we don't really "need" it. We'll have to find a way to "anonymize" the IP address to avoid any problem.
Of course, avoiding to store the IP address in the database won't fix another major issue: your web server, be it Apache or Nginx, writes visitors IP address in log files.
Offline
Hi Flog,
by default Piwigo submits the full IP Adress with a comment (stored in database).
This should not be the case with the GDPR.
Users have to confirm that they agree with data storage when using a contact form.
It will not be sufficient to display a general "we use cookies" banner - it has to be more specific and list what cookies are used by the site.
As far as i can see it is only the pwg_id cookie Piwigo uses.
Cheers
Ralf
Offline
@Plg what about Piwigo registering the View history for registered users too?
And also about the webmaster registering himself users for email notification?
Offline
flop25 wrote:
@Plg what about Piwigo registering the View history for registered users too?
The only "personal data" associated to a user is the email_address (not mandatory by default).
The problem is the column history.IP : it is considered as a personal data, and we need either to ask for consent before storing it (which is quite annoying in my opinion) or finding a way to anonymize it.
Offline
But overall I think the target of GDPR is more Piwigo.com and not self-hosted Piwigo :-) And I can tell you Piwigo.com perfectly fits into the "spirit" of the GDPR. We just have a few small things (like the IP address issue) to fix.
Offline
yes for sure it's more about the use of Piwigo and the addition of specific third party plugins
Offline
Hi PLG,
to anonymize the visitors IP it might be an idea to add some code to the functions.php file - if there will be no option in the backend.
Just add a few lines of code arround line 455:
function getAnonymIp( $ip ) {
return preg_replace('/[0-9]+\z/', '0', $ip);
}
$ip = $_SERVER['REMOTE_ADDR'];
$ip = getAnonymIp( $ip );
The same can be done with the comments in functions_comment_inc.php.
Adding this code before line 221 (//perform more spam check):
function getAnonymIpadresse( $ipadresse ) {
return preg_replace('/[0-9]+\z/', '0', $ipadresse);
}
$ipadresse = $_SERVER['REMOTE_ADDR'];
$ipadresse = getAnonymIpadresse( $ipadresse );
$comm['ip'] = $ipadresse;
I am already using it to anonymize ip adresses.
Because it is not the most elegant way to edit core files it would be greate to have options for it in the backend.
Cheers
Ralf
Last edited by Ralf (2018-05-01 17:31:19)
Offline
Yes Ralf, we will certainly do something like that.
The rating system stores a piwigo_rate.anonymous_id which is basically the 3 first part of the IPv4 IP address. It's fine for rates to avoid double rates from the same person, but I'm not sure it would be fine for piwigo_history.IP because it would not match an IPv4 address pattern.
As far as I remember, the piwigo_history.IP used for:
1) filter the history
2) find the geolocation of the visitor
Offline
Another point regarding GDPR: subscription to Piwigo.org newsletter. For now, on Piwigo installation form, we have a checkbox "subscribe to our newsletter", which is checked by default. Then the user has to validate subscription by clicking a link in an email. It drives ~70% of newsletter subscriptions. Maybe we'll have to uncheck it by default.
Offline
Hi,
just wanted to check if there are any updates on this? With 25.05. coming up it would be shame to having to disable piwigo on my site just to avoid any cease-and-desist from some German scaming lawyers :-(
Thanks,
Thomas
Offline