[Koha-bugs] [Bug 25673] New: Access logging of borrower's personal information
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Thu Jun 4 10:43:15 CEST 2020
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25673
Bug ID: 25673
Summary: Access logging of borrower's personal information
Change sponsored?: ---
Product: Koha
Version: master
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: P5 - low
Component: Staff Client
Assignee: koha-bugs at lists.koha-community.org
Reporter: joonas.kylmala at helsinki.fi
QA Contact: testopia at bugs.koha-community.org
CC: gmcharlt at gmail.com
Blocks: 18081
I don't know if this is directly related to GDPR but at least this seems like a
good practice: create a log if a librarian has accessed a Koha page in intranet
that contains borrower's personal information. This way the library can make
sure by auditing the logs that nobody has for example downloaded all the
borrowers' info en masse with screen scraping.
Currently this is a bit hard to implement in Koha since borrower's personal
info is displayed on many many pages, but to ease this we should think if
displaying borrower's real name is necessary or would a cardnumber or
borrowernumber be better.
Referenced Bugs:
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=18081
[Bug 18081] [omnibus] GDPR (General Data Protection Regulation)
--
You are receiving this mail because:
You are watching all bug changes.
You are the assignee for the bug.
More information about the Koha-bugs
mailing list