Digital Privacy is a fundamental right in the primary law of the European Union, and the General Data Protection Regulation (GDPR) is one of the main legal instruments. GDPR uses the following terminology (in short):
Data Subject : a natural person, as in Section 15.1.2, “Person”.
Personal Data : information related to a Data Subject. See Section 4.4.4, “Edit User” and Section 3.8, “Log”.
Data Controller : an entity that controls the Personal Data, and determines the purpose and means of processing. Members and Visitors of the SavaPage Community are Data Controllers.
Data Processor : an organization that processes the Personal data on behalf of the Data Controller (e.g. in an outsourcing situation).
Data Portability is the Data Subject’s right to obtain information related to the processing of their Personal Data from the Data Controller. This allows the Data Subject to move, copy or transfer personal data easily from one IT environment to another.
SavaPage Data Portability is implemented as a download of personal data as CSV files in a ZIP container from the User List in the Admin Web App or optionally from a GDPR Dialog in the User Web App.
Data Erasure is the Data Subject’s “right to be forgotten”. This right enables a person to request the removal of personal data when there is no compelling reason for its continued processing. The request can optionally be send from the GDPR Dialog in the User Web App.
Data Erasure is performed with a Server Command. See Section C.1.8, “eraseUser” and Section 4.4.3, “Erased Users”.