WordPress.org

Make WordPress Core

Opened 5 weeks ago

Last modified 2 weeks ago

#44101 new defect (bug)

GDPR Erasure Workflow - Make the Erasure Fulfilled notification admin triggered

Reported by: garrett-eclipse Owned by:
Milestone: Future Release Priority: normal
Severity: normal Version: 4.9.6
Component: Privacy Keywords: gdpr needs-design ui-feedback
Focuses: administration Cc:

Description

Hello,

This might be more for a GDPR v2, but from an admin perspective, I found it easy to overlook any manual actions the admin may need to do to properly complete an Erasure.

With the current workflow the requester confirms, and on admin clicking 'Erase Personal Data' the data WP knows about is removed and the user receives a Erasure Fulfilled notification. So is it expected the admin would remove any other non-WP core data before clicking that option?

I was thinking it might be nice to have that 'Erase Personal Data' conduct the erasure but hold off on the fulfilled email and have that manually triggered by the admin once they've removed any other data. Would be nice if this step prompted the admin to conduct any other erasure steps that their process might require.

Hoping that makes sense, I'm just feeling that currently there's no part in the process prompting the admin to do any other erasures that the core doesn't cover.

Thank you

Change History (4)

#1 @desrosj
5 weeks ago

  • Keywords gdpr added

#2 @desrosj
5 weeks ago

  • Component changed from General to Privacy

Moving to the new Privacy component.

This ticket was mentioned in Slack in #core-privacy by desrosj. View the logs.


2 weeks ago

#4 @desrosj
2 weeks ago

  • Keywords needs-design ui-feedback added
  • Milestone changed from Awaiting Review to Future Release
  • Version changed from trunk to 4.9.6

Related #43923

Note: See TracTickets for help on using tickets.