A tool to facilitate GDPR conformance of your Joomla! sites
The component allows the site's visitors to:
- give or revoke their consent for personal data processing (and prevent the user from using the site if they have not provided consent).
- export all data we have on them to a commonly machine readable format (XML).
- exercise their right to be forgotten (account removal) with a concrete audit trail.
The component also keeps an audit log of all the user profile changes, data exports and account removal.
The account removal audit log can be automatically exported to S3 (in a JSON format). This lets you comply with the GDPR requiring you to keep an audit trail of your compliance to personal data requests. Note that this audit log does NOT include any personally identifiable information, just the anonymous IDs of the information deleted.
There is a Joomla CLI integration plugin. You can use the CLI commands to, among other things, schedule periodic removal of stale accounts. This lets you comply with the