Hi!
I’m trying to wrap my head around data privacy management and in particular the data registry. I have two questions:
- User expiry seem to be solely based on last access timestamp & course enrolment. This means that brand new users whom haven’t logged in yet are flagged as expired because they have no last access timestamp and no enrolment yet. Am I doing something wrong? I would have thought the user creation timestamp would have an effect when there is no last access.
- I can’t seem to automate deletion of expired users. Even though they are flagged as expired, the Privacy Officer needs to manually confirm each in the data deletion UI. Is this as intended?
Thank you