@mattab opened this Issue on March 6th 2018 Member

This issue is the master issue where we discuss new features and changes needed in Matomo to make it easier for users be GDPR compliant.

With Matomo, privacy is built-in. We offer several privacy controls already, but this is not enough for GDPR compliance.

Steps we will take to make Matomo GDPR compliant:

  • GDPR - Overview / Info Screen #12594
  • GDPR - Rights to access data #12595
  • GDPR - Right to erasure or right to be forgotten #12596
  • GDPR - Right to rectification #12597
  • GDPR - The data subject right to restriction of processing & The right to withdraw consent #12598
  • GDPR - The right to be informed #12599
  • GDPR - Compliance for old data collected without consent, Data Anonymisation & Removal tool #12641

GDPR rights which we won’t cover (at least for now):

  • GDPR - Right to data portability: Not applicable to Matomo.
  • GDPR - Rights around automated decision making and profiling: By default, automated decision making and profiling is not possible with Matomo so we won’t cover this right, at least for now.

We’re planning to finish this work at least 1 month before the GDPR start date of May 25th.

Please check these issues and feel free to comment.

@tsteur commented on March 7th 2018 Member

At some point it will be also good to have an action button in the visitor log for "Managing the rights" for that visitor. We would not be able to find the same visitor across sites though very likely. It may be useful though as it can offer a lot of flexibility in finding visitors (for one site).

@mattab commented on March 23rd 2018 Member

And we'll likely also build a new very useful little tool: Personal Data Anonymisation & Removal tool #12641

@mattab commented on March 27th 2018 Member

information architecture of the Privacy features and tools.

As the current "Settings" and GDPR Tools and GDPR Manager menu entries all refer to different tools and maybe we can simply the structure like something like this:

  • "Anonymise data" (anon IP + delete logs + delete reports + anon old logs) ,
  • "Privacy policy" (remind how important it is to have a good privacy policy + link to users opt-out)
  • "Users opt-out" (iframe + DNT),
  • "Asking for consent" (JS API doc, later the consent UI),
  • "GDPR tools" (request to access+delete tool, + link to the tools available in the other sections)
  • "GDPR overview"
@HannesSE commented on April 9th 2018

Could you also create a stripped-down "non personal data" only version of Matomo (that could be selected in the settings)?

That stripped-down version would not collect personal at all. For example, only the following could be tracked:

  • How often a particular page was viewed (but not by whom)
  • Which campaigns received the most clicks (but not by whom)
  • Which campaigns received the most goals, etc.

As far as I understand it, such a Matomo version would be GDPR compliant without the need to show a cookie banner and without the need for consent (as no personal data is collected).

@tsteur commented on April 9th 2018 Member

I don't think we will be working on this, however, you can disable plugins to trim down the amount of features and data being recorded etc.

stripped-down version would not collect personal at all

This could be a bit misleading as for example page titles, page URLs, or even campaign names may include personal data.

@mattab commented on April 24th 2018 Member
@mattab commented on April 24th 2018 Member

Hi Everyone, we have released the GDPR Compliant Matomo in 3.5.0-b2 -> Please help us test all the new tools! You can grab it from the beta release channel, learn more: http://piwik.org/faq/how-to-update/faq_159/

Your feedback welcome, please open new issue if you have any feedback or find a bug :rocket:

This Issue was closed on April 24th 2018
Powered by GitHub Issue Mirror