Next year it will become mandatory for online systems used in the EU to support the new GDPR laws:
Moodle will be right there with it.
To get there, we basically need to:
- Get together some legal experts who fully understand the new laws - PARTICULARLY IN THE CONTEXT OF EDUCATION.
- Analyse the distance between what Moodle does now and what GDPR requires and develop a clear spec.
- Do the work in Moodle code and documentation to make sure we are compliant.
- Become certified in a way that any Moodle site can use to show their compliance.
I'm highlighting the education side because I think there are some tricky considerations in a school, university or workplace that may not be obvious. For example, a person removing all their forum posts from a discussion will completely disrupt the learning environment for everyone else.
This is not just a job for Moodle HQ, we really need the whole community to help rally around this and make it happen soon.
Who wants to help?
Who knows of any existing initiatives or even funding available for this?
Let's start pooling info here!
Peace,
Martin