| Summary: | DSGVO / GDPR violation -- no way to delete account | ||
|---|---|---|---|
| Product: | Websites | Reporter: | Markus Robert Keßler <mandrake> |
| Component: | All | Assignee: | Frédéric "LpSolit" Buclin <LpSolit> |
| Status: | NEW --- | QA Contact: | |
| Severity: | normal | ||
| Priority: | Normal | ||
| Version: | trunk | ||
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | https://bugs.mageia.org | ||
| See Also: | https://bugzilla.mozilla.org/show_bug.cgi?id=1459489 | ||
| Whiteboard: | |||
| Source RPM: | -- | CVE: | |
| Status comment: | |||
Frédéric can you please take a look? Assignee:
atelier-bugs =>
LpSolit (In reply to Markus Robert Keßler from comment #0) > Description of problem: > > A mageia-bugs account can only be created, but never deleted. An account can be deleted by admins if that account never reported or commented in a bug. Else only his email address can be changed and the account disabled, but the account will still exists, including contributions (bug reports, comments) made by this account. As I understand GDPR, comments made by a user in a bug report are public and so not considered as personal data, and so do not need to be removed. See the upstream bug https://bugzilla.mozilla.org/show_bug.cgi?id=1459489 Severity:
critical =>
normal |
Description of problem: A mageia-bugs account can only be created, but never deleted. This violates the rights derived from GDPR / DSGVO to be "forgotten": https://gdpr-info.eu/art-17-gdpr This option explicitely has to be present, but still is missing. B.t.w., bug number 11262, https://bugs.mageia.org/show_bug.cgi?id=11262 shows that this never worked. Version-Release number of selected component (if applicable): -- How reproducible: Always, this never worked Steps to Reproduce: 1. Create an account 2. Try to delete it 3.