Data protection regulation throughout Europe - is PHP Fusion ready ???

Yes, with our new Privacy Policy, Cookie consent panel & Terms of Service agreements we should have it all covered.

It is not so much the system you use, but how you use it and what data that is personally identifiable stored data that may be the issue. You need to have specific consent from all users if you keep any kind of lists. You need to be able to present the data and how it is stored if anyone requests it and you need to document why you store the data and what usage you have for it.

That basically covers the main GDPR requirements. Intent, process, accountability.

Good summary, thank you.
We do have a very comprehensive agreements section completed of what data we collect ( Privacy Policy ) , how it is used and so forth.
In addition we have no less than one master Terms of Service agreement with over 29 main clauses and 15 appendixes containing extension agreements and policies of various services and the terms for using our site and the services connected.

Ok

Where can I find the privacy statement of PHP Fusion? I can not find them.

1.) It does not make sense to integrate something like cokkie control into PHP Fusion because it is now mandatory to inform.
2.) is the user log system available in PHP Fusion compliant and allowed?
3.) Would not be necessary for some services as they are queried in the user system (user fields) the consent of the user .. e. with a popup where the user confirms.
4.) Should not you also install the privacy protection in the Registration Settings? For example, with the note that this agreement was read and understood.

Sorry if some things are unclear .. sorry i do not speak english well and have used the translator. I'm just worried because these points I have addressed are mostly neglected.

Yeah, on this subject, we are missing 3 things:

1. Privacy Policy
2. Terms of Use
3. Cookie acceptance notice pop up.

They are in footer, bottom left.

1, https://www.php-fusion.co.uk/legal/privacy.php
2, https://www.php-fusion.co.uk/legal/tos.php
3, Re-Enabled, no idea why it stoped working, but it is back.
4. Done ( Terms of Agreement acceptance during registration )

Catzenjaeger, for point
1 and 2, you cover them in the Privacy Policy and Terms of Use.

From my understanding the GDPR does not in anyway limit action or information storage. You need to be very clear on what is done and can be done and you need to have the users consent for it.

Naturally this goes for new users. I need to see if old users can be affected by it, if that is the case we need to make a new landing page where people can´t proceed unless agreeing to the Privacy Policy & Terms of Service, in essence asking for a account removal since that is the only secundary option.

To add US regulations compliance to COPPA. https://en.wikipedia.org/wiki/Children%27s_Online_Privacy_Protection_Act#Violations

Solving it is easy, we just need to update our locale somewhere to:

I confirm that I am above 13 years of age and agree to the [link]Terms and Conditions of Use[/link] and [link]Privacy Policy[/link].

The fine is calculated by per user registered violated somewhere up to USD$ 1,000 per user if site content is very 'condemning' to children's eyes.

Truth is nobody care, but when someone do.. that is when web owners should be cautious ;)

ToS -


Edit, added just to be very covered with some extra foot note to it.

Is there any way to prevent PHPFusion from saving ANY cookies until the user has accepted that cookies are used? Currently PHPFusion saves the fusion_ cookies the moment a user loads the site, and the GDPR specifically requires that no data is to be written to their device until they accept.

I'm like 80% sure now, that the cookie will only be created when they login only. I do not think guest have cookie created for guest.

I will double check the codes and report back.