Integrating GDPR (General Data Protection Regulation) and Archibus
GDPR
Integrating GDPR (General Data Protection Regulation) and Archibus
See these topics for information on integrating GDPR practices with Archibus:
- What is GDPR?
- GDPR-Related Fields in the Archibus Schema
- Search, Correct, and Delete GDPR Data Using Archibus Application Views
- Search, Export, Correct, and Delete Personal Data Using the GDPR Search Personal Information View
- Remove GDRP Data with a Scheduled Workflow Rule
- Set GDPR Retention Periods for Automatic Anonymization
- Process GDPR Updates and Deletions from External Systems and Feeds with Connectors
Getting Started
- Set how long your site will retain data by setting the application parameters that control the retention periods.
-
Check your project data for completeness.
- In order for the workflow rules to anomynize data subjects once data subjects are no longer in contact with the organization, you must track the dates that data subjects leave the organization.
-
Each GDPR parameter includes in its description the database field that the workflow rule check, such as the
date_closedfield of theactivity_logtable. You may want to review this data to be sure that these fields have values if the party is longer affiliated with your company. The end dates for the main tables are:
Table End Date Employees date_terminatedArchibus Users date_terminatedCraftspersons date_contract_expContacts date_terminatedVisitors date_end -
To get started removing data that you know is obsolete, you may want to edit the Date of GPDR Removal fields (
date_gdpr_removal) to today's date in the above tables. You can bulk edit this field, or use the System / Archibus Administrator - User and Security / GDPR - Search Personal Information task (ab-gdpr-search-data-subject.axvw). Setting this field will enable the scheduled workflow rule to delete these records. Then, going forward, you can depend on the workflow rule to remove obsolete data.