https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25673
Bug ID: 25673
Summary: Access logging of borrower's personal information
Change sponsored?: ---
Product: Koha
Version: master
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: P5 - low
Component: Staff Client
Assignee: [email protected]
Reporter: [email protected]
QA Contact: [email protected]
CC: [email protected]
Blocks: 18081
I don't know if this is directly related to GDPR but at least this seems like a
good practice: create a log if a librarian has accessed a Koha page in intranet
that contains borrower's personal information. This way the library can make
sure by auditing the logs that nobody has for example downloaded all the
borrowers' info en masse with screen scraping.
Currently this is a bit hard to implement in Koha since borrower's personal
info is displayed on many many pages, but to ease this we should think if
displaying borrower's real name is necessary or would a cardnumber or
borrowernumber be better.
Referenced Bugs:
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=18081
[Bug 18081] [omnibus] GDPR (General Data Protection Regulation)
--
You are receiving this mail because:
You are watching all bug changes.
You are the assignee for the bug.
_______________________________________________
Koha-bugs mailing list
[email protected]
https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs
website : http://www.koha-community.org/
git : http://git.koha-community.org/
bugs : http://bugs.koha-community.org/
