-
Notifications
You must be signed in to change notification settings - Fork 20
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Solution needed for GDPR Compliance #3699
Labels
enhancement
New feature or request
Comments
joeparsons
added a commit
that referenced
this issue
Sep 11, 2024
joeparsons
added a commit
that referenced
this issue
Sep 11, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Motivation
Arizona International has suspended all paid advertising in the European market until we (as a university) have a solution in place for GDPR Compliance.
Proposed Resolution
Describe the solution you'd like
I would like a solution in place that:
Describe alternatives you've considered
The Privacy Office has worked with Meredith Aaronson to explore a fully comprehensive solution using onetrust. This would have been a more enterprise wide data privacy solution that included provisions for the right to be forgotten (and more) and would have been implemented across all of the university's data systems (Trellis, UAccess Student, etc.). Onetrust also has a Drupal module available that would connect into this greater solution, but doesn't seem to function without that larger contract. The implementation of this broader solution seems to be off the table for now.
There are open source solutions available like the Cookies Consent Manager Module that are designed more specifically as a solution to providing consent for tracking cookies for anonymous users to our websites. This solution integrates with Google Tag Manager's consent mode, but does not assume any liability for compliance with GDPR. If this solution is selected, the liability for compliance will need to be assumed by the privacy office and OGC.
Roles and Permissions considerations
A clear and concise description of how each of the following roles would be impacted by this change:
Should be offered consent options in relevant markets
Likely doesn't need to be offered consent options, but this is probably worth discussion since there are use cases for authenticated users that don't have any other roles on the site.
No change
Should be able to administer Cookie management
Should be able to enable/disable any relevant modules
Additional context
Ryan Dool in Marketing & Brand Development and Cameron Green in Campus Web Services will work with the Privacy office to gain the necessary approvals for our solution.
The text was updated successfully, but these errors were encountered: