WordPress.org

Make WordPress Core

Opened 5 weeks ago

Last modified 5 weeks ago

#44415 new feature request

Create a new user role for DPOs

Reported by: xkon Owned by:
Milestone: Awaiting Review Priority: normal
Severity: normal Version:
Component: Privacy Keywords:
Focuses: Cc:

Description

We had a chat during the Contribution Day in WCEU2018 and there was an idea to have a new role implemented just for Data Protection Officers ( DPO ).

The points of this were that:

  • only the DPO would have access to edit the policy page
  • only the DPO would have access to the privacy tools
  • there's no need for other user levels to have access to it (it was mentioned that not even the admin should have access, but I think we where over this part :)).
  • the DPO doesn't need to be an 'administrator/editor or any other role' so he wouldn't have access to anything else other than the privacy tools as well.

--

My only valid counter thinking at that time was that there isn't always a DPO needed of course so it wouldn't be nice to force anyone to have 2 different users to tackle a simple thing as creating a policy page. So even though I do see the points above valid I think they would eventually be counter productive and might make more harm than good let's say.

Just bringing this here for more input and see if it is worth thinking up something that would benefit both sides, for example just an extra DPO role if anybody wants to give access only to the privacy tools that we added (the administrator would still of course have access to everything).

Change History (1)

#1 @garrett-eclipse
5 weeks ago

I like this idea, if done with new capabilities and a new role then those capabilities should be enabled for admin as well in the case there's no one with the DPO role.

Note: See TracTickets for help on using tickets.