Joomla! Community Magazine™

The General Data Protection Regulation (GDPR) is a privacy law that protects the privacy rights of residents of the European Union.

The General Data Protection Regulation (GDPR) is a privacy law that aims to protect the personal data of European Union citizens. One of the ways in which GDPR achieves this is by providing individuals with certain privacy rights, including the right to be forgotten.

The General Data Protection Regulation (GDPR) was enacted to protect the privacy rights of residents of the European Union. One of the ways in which GDPR protects privacy is by enacting certain principles relating to the processing of personal data. In the data minimisation principle, GDPR specifies that personal data must be adequate, relevant and limited to what is necessary in relation to the purposes for which that personal data is processed. In this article, we will discuss the data minimisation principle, including tips on how to determine if you are processing too much data and how you can evaluate your data management practices.

During the last decade, there has been a definitive migration from a software license strategy to a subscription-based integration service that delivers the software across the Internet. This service is better known as SaaS or Software as a Service.

The Joomla Privacy Journey started back in November 2017 when the Board of Open Source Matters, Inc. realized the need to ensure compliance with GDPR and Privacy regulations. A new working group was formed and since then, several volunteers helped the Project to audit its internal Privacy and take actions to reach compliance.

One year and six months ago, the European General Data Protection Regulation (GDPR) came into effect. For the world - or at least businesses -  life didn’t end on the 25.05.18, neither have we seen massive amounts of fines given to small and medium-sized companies after that date.

EU citizens will soon expect that their personal data will by default be processed more carefully, transparently and only for the purposes for which they provided their explicit consent. The General Data Privacy Regulation (GDPR) introduces many improvements to personal data protection. It doesn’t matter whether the service provider is physically located in EU area or not, or if the provided services are paid or free of charge. If the service is available to people within the EU and personal data is involved, the regulation shall be applied and personal data must be protected according to the GDPR.

Nowadays, due to the advances of information and communication technologies in conjunction with the so-called social web, the amount of personal data that users are sharing publicly is continuously increasing. We are witnessing the phenomenon of the development of an online "heaven" of personal data sharing that can be potentially transformed to a personal "hell" for any individual or company. At the same time, cybercriminals are becoming even more sophisticated and malicious users can in many ways track and/or spy other users at their online activities.

Over the last decades, the web has become significantly more social and made communication among companies and users much easier. At the same time, terms such as “privacy” were in many cases underestimated because of the abundance of public shared personal data. Users are dynamically contributing to the content production of the web, and they often get involved in a “game” where their personal data becomes the actual product. It is not unusual for a user to misunderstand that his personal data is information that could be publicly shared without any special protection.