Can we make it GDPR compliance ? user can download their info and delete there account

[spirogg]

Can we make it GDPR compliance ? user can download their info and delete there account #144

[MacWarrior]

Hi,

GDPR isn't only about account deletion
I've worked a bit (well in fact a lot) on GRPD compliance on french websites... And all I can say is GDPR is a mess !

Juste a bit of GDPR things :

• Strict password constraint (number and type of characters)
• Password expiration (Something like 90 days)
• Being able do delete // fully disable account
• Being able to ask for personal data export
• Remove unessary personnal information from signup form
• Auto remove personnal data from unused account after 3 years (Even in your backups !)
• All personnal data have to be hosted in UE
• Log all access to personnal datas (Who accessed which data and when)
• Mass email sending process to inform if/when someone accessed personnal datas (Like using a security breach)
• And so much more... 😞

Bit by bit, we will trend to be GDPR compliant, but this is clearly not my priority (Even if I'm French, as a developer, GDPR is a pain in the ***)

[Blisk]

How to make a GDPR compliance when you first visit website and you confirm to accept cookies? like other sites have?