On 1 May 2018, at 00:44, thomasmulhall410 via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:Hi, is gerrit GDPR complient?
I just filled https://bugs.chromium.org/p/gerrit/issues/detail?id=8874But also does gerrit support a cookie notice too?
--
--
To unsubscribe, email repo-discuss...@googlegroups.com
More info at http://groups.google.com/group/repo-discuss?hl=en
---
You received this message because you are subscribed to the Google Groups "Repo and Gerrit Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
We could just have a GDPR plugin for:- collecting explicit consensus- removing all private details from the account if requiredRemoving the account itself can be dangerous and, as long as the details are gone and the account is set to disabled, we should be good from a GDPR perspective.
On 1 May 2018, at 00:44, thomasmulhall410 via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:Hi, is gerrit GDPR complient?I actually had the same question in my mind :-OI just filled https://bugs.chromium.org/p/gerrit/issues/detail?id=8874But also does gerrit support a cookie notice too?Gerrit supports header customisation, so it is potentially possible to create the notice.The more problematic one is allowing users to be removed or the details masked :-(
We could just have a GDPR plugin for:- collecting explicit consensus- removing all private details from the account if requiredRemoving the account itself can be dangerous and, as long as the details are gone and the account is set to disabled, we should be good from a GDPR perspective.
LucaSent from my iPhone
On 1 May 2018, at 00:44, thomasmulhall410 via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:Hi, is gerrit GDPR complient?I actually had the same question in my mind :-OI just filled https://bugs.chromium.org/p/gerrit/issues/detail?id=8874But also does gerrit support a cookie notice too?Gerrit supports header customisation, so it is potentially possible to create the notice.The more problematic one is allowing users to be removed or the details masked :-(
More info at http://groups.google.com/group/repo-discuss?hl=en
---
You received this message because you are subscribed to the Google Groups "Repo and Gerrit Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss+unsubscribe@googlegroups.com.
More info at http://groups.google.com/group/repo-discuss?hl=en
---
You received this message because you are subscribed to the Google Groups "Repo and Gerrit Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss+unsubscribe@googlegroups.com.
On 1 May 2018, at 20:45, Matthias Sohn <matthi...@gmail.com> wrote:You can anonymise the account but how can you remove personal datafrom Git repositories ? Email and user name are baked into commits.
On 1 May 2018, at 20:45, Matthias Sohn <matthi...@gmail.com> wrote:You can anonymise the account but how can you remove personal datafrom Git repositories ? Email and user name are baked into commits.I believe GitHub has the same problem, isn't it?How did they solve it?
On 1 May 2018, at 20:45, Matthias Sohn <matthi...@gmail.com> wrote:You can anonymise the account but how can you remove personal datafrom Git repositories ? Email and user name are baked into commits.I believe GitHub has the same problem, isn't it?How did they solve it?
We could just have a GDPR plugin for:- collecting explicit consensus- removing all private details from the account if requiredRemoving the account itself can be dangerous and, as long as the details are gone and the account is set to disabled, we should be good from a GDPR perspective.
On 1 May 2018, at 00:44, thomasmulhall410 via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:Hi, is gerrit GDPR complient?I actually had the same question in my mind :-OI just filled https://bugs.chromium.org/p/gerrit/issues/detail?id=8874But also does gerrit support a cookie notice too?Gerrit supports header customisation, so it is potentially possible to create the notice.The more problematic one is allowing users to be removed or the details masked :-(
Basically all fields from the Contact Information and Identities tabs should be anonymized for an account to-be-removed-but-kept-for-interal-purpose.username and Full Name are obvious.The email addresses, even corporates one, are part of personal information per GDPR point-of-view as they uniquely identify someone.
To unsubscribe, email repo-discuss...@googlegroups.com
On 2 May 2018, at 07:57, 'Edwin Kempin' via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:On Wed, May 2, 2018 at 8:20 AM Tech Advantage <a...@tech-advantage.com> wrote:Basically all fields from the Contact Information and Identities tabs should be anonymized for an account to-be-removed-but-kept-for-interal-purpose.username and Full Name are obvious.The email addresses, even corporates one, are part of personal information per GDPR point-of-view as they uniquely identify someone.Unfortunately anonymizing accounts completely is not as easy as it sounds, since it requires rewriting NoteDb refs:
- The refs/users/YY/XXXXXXX ref in All-Users that stores the account details
- The refs/groups/YY/XXXXXXXXXXXXXXXXXXXXXX refs in All-Users for groups that contained that user (the commit messages that serve as audit log for the group contain the account names of added/removed users)
- The refs/changes/YY/XXXX/meta refs for all changes where this user was involved (as the user is author of these commits and the user name is part of the author information)
On 2 May 2018, at 07:57, 'Edwin Kempin' via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:On Wed, May 2, 2018 at 8:20 AM Tech Advantage <a...@tech-advantage.com> wrote:Basically all fields from the Contact Information and Identities tabs should be anonymized for an account to-be-removed-but-kept-for-interal-purpose.username and Full Name are obvious.The email addresses, even corporates one, are part of personal information per GDPR point-of-view as they uniquely identify someone.Unfortunately anonymizing accounts completely is not as easy as it sounds, since it requires rewriting NoteDb refs:That is neither good nor desirable:
On 2 May 2018, at 08:25, Edwin Kempin <eke...@google.com> wrote:On Wed, May 2, 2018 at 9:20 AM Luca Milanesio <luca.mi...@gmail.com> wrote:On 2 May 2018, at 07:57, 'Edwin Kempin' via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:On Wed, May 2, 2018 at 8:20 AM Tech Advantage <a...@tech-advantage.com> wrote:Basically all fields from the Contact Information and Identities tabs should be anonymized for an account to-be-removed-but-kept-for-interal-purpose.username and Full Name are obvious.The email addresses, even corporates one, are part of personal information per GDPR point-of-view as they uniquely identify someone.Unfortunately anonymizing accounts completely is not as easy as it sounds, since it requires rewriting NoteDb refs:That is neither good nor desirable:I'm not saying that this is good or desirable, just stating that this is a problem :(
On 2 May 2018, at 08:25, Edwin Kempin <eke...@google.com> wrote:On Wed, May 2, 2018 at 9:20 AM Luca Milanesio <luca.mi...@gmail.com> wrote:On 2 May 2018, at 07:57, 'Edwin Kempin' via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:On Wed, May 2, 2018 at 8:20 AM Tech Advantage <a...@tech-advantage.com> wrote:Basically all fields from the Contact Information and Identities tabs should be anonymized for an account to-be-removed-but-kept-for-interal-purpose.username and Full Name are obvious.The email addresses, even corporates one, are part of personal information per GDPR point-of-view as they uniquely identify someone.Unfortunately anonymizing accounts completely is not as easy as it sounds, since it requires rewriting NoteDb refs:That is neither good nor desirable:I'm not saying that this is good or desirable, just stating that this is a problem :(Can someone go to Bruxelles and teach them what is source code, OpenSource and a Git repository?Sometimes they make our lives so much difficult :-(
Can I propose then the creation of a 'delete-account' plugin?
On 2 May 2018, at 12:30, David Pursehouse <david.pu...@gmail.com> wrote:On Wed, 2 May 2018, 20:19 Luca Milanesio, <luca.mi...@gmail.com> wrote:Can I propose then the creation of a 'delete-account' plugin?Why not make this a core functionality?
Luca.
Luca.
To unsubscribe, email repo-discuss+unsub...@googlegroups.com
More info at http://groups.google.com/group/repo-discuss?hl=en
---
You received this message because you are subscribed to the Google Groups "Repo and Gerrit Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss+unsubscribe@googlegroups.com.
I wonder should this be deployed on to gerrit-review?
On Tuesday, May 1, 2018 at 12:44:45 AM UTC+1, thomasmu...@yahoo.com wrote:Hi, is gerrit GDPR complient?I just filled https://bugs.chromium.org/p/gerrit/issues/detail?id=8874But also does gerrit support a cookie notice too?
More info at http://groups.google.com/group/repo-discuss?hl=en
---
You received this message because you are subscribed to the Google Groups "Repo and Gerrit Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss...@googlegroups.com.
Sent from my iPhone
On 22 May 2018, at 23:44, thomasmulhall410 via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:I wonder should this be deployed on to gerrit-review?Yes, if there is consensus in doing that, I’ll be happy to move it over, for better discoverability.
On 23 May 2018, at 08:35, David Pursehouse <david.pu...@gmail.com> wrote:On Wed, May 23, 2018 at 3:28 PM <luca.mi...@gmail.com> wrote:Sent from my iPhone
On 22 May 2018, at 23:44, thomasmulhall410 via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:I wonder should this be deployed on to gerrit-review?Yes, if there is consensus in doing that, I’ll be happy to move it over, for better discoverability.I think he meant deploy the plugin on gerrit-review, rather than just host the source code (and reviews) there.
On 23 May 2018, at 08:37, Luca Milanesio <luca.mi...@gmail.com> wrote:On 23 May 2018, at 08:35, David Pursehouse <david.pu...@gmail.com> wrote:On Wed, May 23, 2018 at 3:28 PM <luca.mi...@gmail.com> wrote:Sent from my iPhone
On 22 May 2018, at 23:44, thomasmulhall410 via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:I wonder should this be deployed on to gerrit-review?Yes, if there is consensus in doing that, I’ll be happy to move it over, for better discoverability.I think he meant deploy the plugin on gerrit-review, rather than just host the source code (and reviews) there.No, that wouldn't work because with gerrit-review and isn't needed either.Gerrit-Review account management is based on Google Account and thus should already be GDPR-compliant.
On 23 May 2018, at 08:37, Luca Milanesio <luca.mi...@gmail.com> wrote:On 23 May 2018, at 08:35, David Pursehouse <david.pu...@gmail.com> wrote:On Wed, May 23, 2018 at 3:28 PM <luca.mi...@gmail.com> wrote:Sent from my iPhone
On 22 May 2018, at 23:44, thomasmulhall410 via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:I wonder should this be deployed on to gerrit-review?Yes, if there is consensus in doing that, I’ll be happy to move it over, for better discoverability.I think he meant deploy the plugin on gerrit-review, rather than just host the source code (and reviews) there.No, that wouldn't work because with gerrit-review and isn't needed either.Gerrit-Review account management is based on Google Account and thus should already be GDPR-compliant.I believe the problem is with the other publicly accessible Gerrit setups:- Wikimedia- OpenStack- Eclipse Foundation- other?The plugin could be useful for them :-)Having the plugin hosted on gerrit-review.googlesource.com would make it more discoverable and reviews accessible IMHO.
On 23 May 2018, at 08:53, Edwin Kempin <eke...@google.com> wrote:On Wed, May 23, 2018 at 9:48 AM Luca Milanesio <luca.mi...@gmail.com> wrote:On 23 May 2018, at 08:37, Luca Milanesio <luca.mi...@gmail.com> wrote:On 23 May 2018, at 08:35, David Pursehouse <david.pu...@gmail.com> wrote:On Wed, May 23, 2018 at 3:28 PM <luca.mi...@gmail.com> wrote:Sent from my iPhone
On 22 May 2018, at 23:44, thomasmulhall410 via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:I wonder should this be deployed on to gerrit-review?Yes, if there is consensus in doing that, I’ll be happy to move it over, for better discoverability.I think he meant deploy the plugin on gerrit-review, rather than just host the source code (and reviews) there.No, that wouldn't work because with gerrit-review and isn't needed either.Gerrit-Review account management is based on Google Account and thus should already be GDPR-compliant.I believe the problem is with the other publicly accessible Gerrit setups:- Wikimedia- OpenStack- Eclipse Foundation- other?The plugin could be useful for them :-)Having the plugin hosted on gerrit-review.googlesource.com would make it more discoverable and reviews accessible IMHO.+1 for hosting it there
On 23 May 2018, at 09:02, Luca Milanesio <luca.mi...@gmail.com> wrote:On 23 May 2018, at 08:53, Edwin Kempin <eke...@google.com> wrote:On Wed, May 23, 2018 at 9:48 AM Luca Milanesio <luca.mi...@gmail.com> wrote:On 23 May 2018, at 08:37, Luca Milanesio <luca.mi...@gmail.com> wrote:On 23 May 2018, at 08:35, David Pursehouse <david.pu...@gmail.com> wrote:On Wed, May 23, 2018 at 3:28 PM <luca.mi...@gmail.com> wrote:Sent from my iPhone
On 22 May 2018, at 23:44, thomasmulhall410 via Repo and Gerrit Discussion <repo-d...@googlegroups.com> wrote:I wonder should this be deployed on to gerrit-review?Yes, if there is consensus in doing that, I’ll be happy to move it over, for better discoverability.I think he meant deploy the plugin on gerrit-review, rather than just host the source code (and reviews) there.No, that wouldn't work because with gerrit-review and isn't needed either.Gerrit-Review account management is based on Google Account and thus should already be GDPR-compliant.I believe the problem is with the other publicly accessible Gerrit setups:- Wikimedia- OpenStack- Eclipse Foundation- other?The plugin could be useful for them :-)Having the plugin hosted on gerrit-review.googlesource.com would make it more discoverable and reviews accessible IMHO.+1 for hosting it thereAgreed, let me create it now.It *could* become a core-plugin IMHO, it is actually a feature that is needed in Gerrit after all, at least for those setups that are publicly accessible.
Luca.Luca.Luca.Luca
To unsubscribe, email repo-discuss+unsub...@googlegroups.com
More info at http://groups.google.com/group/repo-discuss?hl=en
---
You received this message because you are subscribed to the Google Groups "Repo and Gerrit Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss+unsubscribe@googlegroups.com.
--
--
To unsubscribe, email repo-discuss+unsub...@googlegroups.com
More info at http://groups.google.com/group/repo-discuss?hl=en
---
You received this message because you are subscribed to the Google Groups "Repo and Gerrit Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss+unsubscribe@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
--
To unsubscribe, email repo-discuss+unsub...@googlegroups.com
More info at http://groups.google.com/group/repo-discuss?hl=en
---
You received this message because you are subscribed to the Google Groups "Repo and Gerrit Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss+unsubscribe@googlegroups.com.
Luca.Luca.Luca.Luca
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss...@googlegroups.com.
--
--
To unsubscribe, email repo-discuss+unsub...@googlegroups.com
More info at http://groups.google.com/group/repo-discuss?hl=en
---
You received this message because you are subscribed to the Google Groups "Repo and Gerrit Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
--
To unsubscribe, email repo-discuss+unsub...@googlegroups.com
More info at http://groups.google.com/group/repo-discuss?hl=en
---
You received this message because you are subscribed to the Google Groups "Repo and Gerrit Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss...@googlegroups.com.