View Issue Details

IDProjectCategoryView StatusLast Update
14408Feature requests[All Projects] Securitypublic2019-01-10 15:11
Reporteradelphi_userAssigned To 
PrioritynoneSeverityfeature 
Status newResolutionopen 
Product Version 
Target VersionFixed in Version 
Summary14408: DSVGO - sending passwort in plain-text with an e-mail is no longer allowed
Description

If a user registers to continue the survey later, an e-mail will be sent to him. In this e-mail the user will find the password in plain text. You can also find the password in plain-text in the URL.
According to the new DSVGO, the sending of passwords in plain-text with an e-mail is no longer allowed. That's why our data protection officer is getting on my roof.
How do you want to deal with this problem in the future?

Thx

TagsNo tags attached.

Activities

DenisChenu

DenisChenu

2019-01-09 11:54

developer   ~50131

Same for "Create admin user" => we must use "Single password system"

bismark

bismark

2019-01-09 14:54

reporter   ~50135

dont call it password ;-)

DenisChenu

DenisChenu

2019-01-09 15:26

developer   ~50137

Else : in my opinion : must have a checkbox "Put complete link for reload" Y/N : N is better, but Y didn't update for other user.

My general global opinion : muts move whole register system to plugin/extension/module …

LouisGac

LouisGac

2019-01-10 15:11

manager   ~50146

dont call it password seems a good solution :)

Issue History

Date Modified Username Field Change
2019-01-08 17:32 adelphi_user New Issue
2019-01-09 11:54 DenisChenu Note Added: 50131
2019-01-09 14:54 bismark Note Added: 50135
2019-01-09 15:26 DenisChenu Note Added: 50137
2019-01-10 15:11 LouisGac Note Added: 50146