GDPR/Compliance Team Meeting - August 29, 2018

This meeting of the Joomla! Compliance Team has been held on August 29, 2018 at 16.30 CET on Glip.

In attendance: Achilleas Papageorgiou, Luca Marzo, Sandra Decoux, Sander Potjer, Roland Dalmulder, Alkaios Anagnostopoulos.

Achilleas shared the Cookie Audit spreadsheet, updated with the latest audit. There is still work to do on that to classify needed and optional cookies for each property and how to deal with them.
Sandra and Achilleas are working to achieve a Cookie Partnership with one of the identified cookie handling software vendors.
Roland to provide the details of the 3 additional session cookies generated by the Single Sign On system in order to list them in the Cookie Audit spreadsheet.
Achilleas to open a document regarding the policy to deal with cookies.
Achilleas to audit repository.joomla.org (that is used for internal testing) as it will be used to deploy the cookie management solution for testing.
Achilleas and Luca to work on the Backup Policy document.
Luca to prepare a form to collect data about current backup policy, retention, storage and usage across joomla.org properties from Webmasters Team.
Sander and Roland are working on the SSO system features and issues. A demo should be ready by the end of the next week.
Roland shared previously this week the user consent management view.
Next tasks are:
- Create an Incident Response Policy (the way in which the organization would deal with data breach or data incidents).
- Create or/and update the already collected info regarding the Index of Processing (that will be done once SSO and Cookie system will be in place).
The Compliance Team would like to thank the Data2.eu service who donated a subscription to the Joomla Community.

Next meeting will take place on September 05, 2018 at 16.30 CET on Glip.
Meeting ends after 75 minutes.