|9:00 AM ET||Data privacy technical and organizational issues for the LDP||Ingolf|
Based on a meeting with Sven, the Data Privacy Officer (DPO) for ZBW: (ZBW is a library in the GBV consortium, and is an early implementer. According to Ingolf, if Sven approves of the measures implemented to protect data privacy in the LDP, then they are likely to be acceptable to all ZBW and GBV libraries that are affiliated with Folio at this point.)
Nassib agreed that the idea of having Folio developers marking fields as personal data is the best and most elegant of all solutions. However, it is not practical in the short run, as this will not be a priority of developers, just as documentation has not been a priority for developers. It will be a long-term effort to get through to Folio management that we need this marker system to be implemented. So we need a solution that we can implement right now. We can continue with the anonymization process by identifying all fields that currently contain personal data. If the community monitors changes in all the Folio modules to see when a new field is added, so that if needed it can be marked as personal, and until that happens it won't be brought into the LDP, one issue is that when Folio is upgraded, how do we coordinate this with the LDP? Folio does not coordinate with the LDP, so it is out of our control.
We agreed that the best way forward is to:
To do: Ingolf and Vandana to give Nassib a final list of personal data fields after meeting on next Friday.