-1

Hella !

I know how GDPR requires me to hide all personal data and make it impossible to get a match on any living person with any combination of the tables records. But any of you have experience about setting up the server itself GDPR ready? I mean I've limited the users to two (root and appadmin) and allowed both only from localhost but is there anything more I need to or should do? As for backup I'll replicate the DB with SSL but anything more I can do?

Thanks for the advice!

Bert
  • 1,106

1 Answers1

4

GDPR doesn't work like that.

You can have the data well structured like you would have without GDPR.

What GDPR requires is that you have a proper and honest Privacy Policy and respect when the user wants to delete their contents from your servers.

There's more than this, such as ensuring you protect the data and getting user consents, but I recommend you do some reading about GDPR.

Nuno
  • 673
  • 3
  • 10
  • 28