Extension GDPR Compliance


Extension Basics

Title
GDPR Compliance
Name
ckanext-gdpr
Type
Public extension
Description
GDPR compliance framework with data protection controls, consent management, and privacy features.
CKAN versions

~2.8.0, ~2.9.0, ~2.10.0

Show details
Download-Url (zip)
https://github.com/datopian/ckanext-gdpr.git#egg=ckanext-gdpr
Last commit
7 years ago (2018-10-08 12:06:46)
Url to repo
https://github.com/datopian/ckanext-gdpr
Category
Specialized Tools


Background Infos

Description (long)
Show details

The GDPR Compliance extension provides comprehensive General Data Protection Regulation (GDPR) compliance capabilities for CKAN instances, implementing essential data protection controls, user consent management, and privacy features required for European Union data protection compliance and global privacy best practices. This critical extension addresses GDPR requirements through automated data subject rights management, including right to access, rectification, erasure (right to be forgotten), data portability, and restriction of processing with comprehensive audit trails for compliance demonstration. The system implements consent management frameworks with granular consent tracking, withdrawal mechanisms, and lawful basis documentation for data processing activities. Advanced features include automated data retention policies, anonymization tools for personal data protection, and comprehensive logging of all data processing activities for regulatory compliance reporting. The extension provides privacy-by-design features including data minimization controls, purpose limitation enforcement, and storage limitation mechanisms that automatically manage data lifecycle according to GDPR principles. Administrative tools include data protection impact assessment (DPIA) templates, breach notification workflows, and comprehensive compliance reporting with audit trail generation. Integration capabilities extend to external consent management platforms, legal compliance systems, and notification services for automated compliance workflows. The system supports cross-border data transfer controls, adequacy decision enforcement, and binding corporate rules implementation for international data operations. User-facing features include privacy dashboards, data subject request portals, and transparent privacy policy management with clear consent interfaces. Essential for European organizations subject to GDPR requirements, international organizations processing EU resident data, government agencies implementing privacy regulations, and any installation where data protection compliance, user privacy rights, and regulatory adherence are critical for legal operation and maintaining user trust in the digital data ecosystem.

Version
Latest
Version release date
2018-10-08
Contact name
Datopian Team
Contakt email
info@datopian.com
Contact Url
(not set)


Installation Guide

Configuration hints

Implements GDPR compliance with data subject rights and consent management.

Plugins to configure (ckan.ini)
gdpr
CKAN Settings (ckan.ini) 
# ckanext.gdpr.enable_consent_management = true
# ckanext.gdpr.data_retention_period = 730
# ckanext.gdpr.enable_right_to_be_forgotten = true
# ckanext.gdpr.enable_data_portability = true
# ckanext.gdpr.audit_log_retention = 2555
# ckanext.gdpr.privacy_officer_email = dpo@example.com
DB migration to be executed
gdpr initdb
<< back to Extensions