TracyIsland Posted September 9 Posted September 9 I am refining the sections in the Terms & Privacy Policy. In my searches for information, I came across Matt's blog post from 2017: https://invisioncommunity.com/news/invision-community/how-invision-communitys-tools-can-help-with-gdpr-compliance-r1052/ The links in there to the EU policy were very revealing and since our organization is US-based but global in reach, we need to really explain every aspect of what is private and what isn't on our site. If there is one takeaway from Matt's post and the EU policy, it is the need for transparency. I have created a policy that I think is extremely transparent about the user data collected during registration as well as the additional profile completion fields. What is missing is an explanation of what information is tracked by the logs in the acp. I need to disclose what separate items I can see in the logs about an individual user. Could someone refine this list or amend it? Obviously I don't have a good grasp on what logs are available and what information can be gleaned from the logs. Number of messages sent (received?) are tracked? [is this a log thing? Can I put my fingers on how many messages a user sent in a given timeframe?] Number of times a user has logged in and out? What device a user has used to access the platform? All the content a user has created in a given timeframe or what? images? posts? comments? articles? events? pages application data? What have I missed by being so unaware of the logs resource? Thank you for any inputs or thoughts.
Jim M Posted September 9 Posted September 9 Before you even go down this road, I would check with a lawyer to even see that it is necessary for the regions you're "doing business" in. Most privacy policies remain complaint to these laws by simply stating what may be collected and how it may be used without being specific to each individual report/log you may have.
Recommended Posts