Hi,
European GPDR make us delete customers and agents who are no longer in the company.
But in the documentation i find : Warning:Customers can not be deleted from the system. They can only be deactivated by setting theValidityoption toinvalidorinvalid-temporarily.
So OTRS is not gpdr compliant, do you plan to correct it ?
regards.
GPDR
Moderator: crythias
Re: GPDR
Hi,
In any case you can delete the customer_user table record. But this alone will not help you for GDPR compliance.
Flo
For the question: "do you plan to correct it"?
This is a community forum. You might ask in the developpers area or add your valueable code to the git repo.
For the commercial OTRS you have to ask the vendor.
Flo
This is not GPDR. Deletion is not always mandatory. There are rules to be followed. Deleting, restricting access or more.jmjoussein wrote: ↑13 Sep 2019, 11:29 European GPDR make us delete customers and agents who are no longer in the company.
The documentation is right. In the meaning of "deletion" the application can not do it. The application itself can be made GDPR compliant. Not in an vanilla installation, but with additional know how.But in the documentation i find : Warning:Customers can not be deleted from the system. They can only be deactivated by setting theValidityoption toinvalidorinvalid-temporarily.
So OTRS is not gpdr compliant, do you plan to correct it ?
In any case you can delete the customer_user table record. But this alone will not help you for GDPR compliance.
Flo
For the question: "do you plan to correct it"?
This is a community forum. You might ask in the developpers area or add your valueable code to the git repo.
For the commercial OTRS you have to ask the vendor.
Flo
OTRS 8 SILVER (Prod)
OTRS 8 auf Debian 11 (Test)
Znuny 7.x latest version testing auf Debian 11
-- Ich beantworte keine Forums-Fragen PN - No PN please
I won't answer to unfriendly users any more. A greeting and regards are just polite.
OTRS 8 auf Debian 11 (Test)
Znuny 7.x latest version testing auf Debian 11
-- Ich beantworte keine Forums-Fragen PN - No PN please
I won't answer to unfriendly users any more. A greeting and regards are just polite.
-
- Znuny newbie
- Posts: 15
- Joined: 30 Apr 2014, 10:57
- Znuny Version: 5.0.28
Re: GPDR
i am not agree, credentials are personal data, you must delete them when peoples are no longer in the company.
Deactivate is not enough.
So, where can i find the "additional know how", because i think just deleting customer_user table records are not a good idea for guaranting OTRS work find.?
regards
Deactivate is not enough.
So, where can i find the "additional know how", because i think just deleting customer_user table records are not a good idea for guaranting OTRS work find.?
regards
Re: GPDR
you should contact your data privacy officer to get some more details. There is no written down need to delete data directly as there might be other rules restricting deletion.
Also anonymisation is possible.
We are currently working on some more enhancements for OTRS for the GDPR
Also anonymisation is possible.
We are currently working on some more enhancements for OTRS for the GDPR
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
-
- Znuny superhero
- Posts: 888
- Joined: 15 Dec 2016, 15:13
- Znuny Version: All
- Real Name: Emin
- Company: Efflux GmbH
- Contact:
Re: GPDR
Hey,
If you're just up to getting rid of the old agents, you can simply change their names to something anonymous and set them to invalid.
But you should definitely not delete something directly from the database (especially not agents).
Best regards
Emin
If you're just up to getting rid of the old agents, you can simply change their names to something anonymous and set them to invalid.
But you should definitely not delete something directly from the database (especially not agents).
Best regards
Emin
Professional OTRS, Znuny & OTOBO services: efflux.de | efflux.de/en/
Free and premium add-ons: German | English
Free and premium add-ons: German | English
-
- Znuny newbie
- Posts: 15
- Joined: 30 Apr 2014, 10:57
- Znuny Version: 5.0.28
Re: GPDR
Yes anonymization is an acceptable solution for the GPDR. But need a manual job.
I think OTRS should do a real ldap or sql synchronization.
regards.
I think OTRS should do a real ldap or sql synchronization.
regards.
Re: GPDR
if you need some details on possible solutions you can contact the company behind OTRS (www.otrs.com)
If you are really using OTRS 5.0.28 you already do not comply to the GDPR as it is not the latest patchlevel.
If you are really using OTRS 5.0.28 you already do not comply to the GDPR as it is not the latest patchlevel.
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com