The European Union (EU) General Data Protection Regulations (GDPR) apply to almost everyone developing or operating a website used by people in the EU. If you are selling good or services from such a website then these regulations apply even if you're not located in the EU. The fines for flouting the regulations can be substantial; 10 Million EUR, or 2% of total worldwide turnover.
This project aims to help micro and small development shops building websites comply with GDPR and similar regulations by providing information as well as reference implementations on a variety of technology stacks. It might also prove a useful resource for larger organisations by helping to clarify the essential requirements for GDPR and encouraging the dissemination of knowledge.
The best place to start is the project's wiki where you'll find documentation about GDPR requirements and how they might be implemented togther with links to specific implementations on various technology stacks.
Everyone is welcome to contribute to this project. However, I am particularly interested in attracting people from throughout the EU who work for any of the supervisory authorities (regulators), lawyers with expertise in GDPR, trade bodies developing codes of conduct, certification bodies for such codes of conduct, as well as developers biulding websites using technology stacks that are not currently supported.
- 19 Aug 18 - WISA Core 2.0 MVC v 1.0.0 baseline release (with cookie support), headline requirements and functional specifications
- 09 Mar 19 - WISA Core 2.0 MVC v 1.1.33.0 change to ensure the initial cookie is permanent rather than session as well as update of cookie banner and information page