GDPR – Paradiso LMS Documentation Portal

1 Overview

1.1 Who does it affect?

1.2 What kind of information comprises personal data in a LMS site?

1.3 How is LMS HQ assisting with GDPR compliance?

1.3.1 GDPR plugins

2 GDPR for LMS administrators

3 LMS & GDPR for Educators & Learners

4 See also

Overview

GDPR stands for General Data Protection Regulation and refers to the European Union regulation for data protection for all individuals within the European Union. The regulation (Regulation (EU) 2016/679) becomes enforceable on 25 May 2018 and replaces the data protection directive (officially Directive 95/46/EC)from 1995.

Who does it affect?

Any individual or organisation that stores or processes personal information on an identifiable person from an EU member state (regardless if the processing or storage of information occurs in the EU or not). It also applies if the individual or organisation themselves is located in an EU member state.

What kind of information comprises personal data in a LMS site?

It is all information that can be associated with a natural person. Each user account and all the activity associated with that user account is classified as personal information. This also extends to associated information such as web server log files.

How is LMS HQ assisting with GDPR compliance?

Earlier this year we reached out to the community through our forums and social media to gauge the needs of different organisations on how they would need to comply with GDPR. We received direct input from a number of LMS institutions, our LMS Partner network and developers.

We developed a set of features which will assist LMS sites meeting GDPR compliance needs. The features cover the following areas:

Onboarding of new users, including; age and location check to identify minors, versioning of privacy policies and the tracking of user consents;
Handling of subject access requests and erasure requests, and maintaining a data registry.

Important note: Installing the developed plugins alone will not be enough to meet the GDPR requirements. Correct configuration and implementation of the required processes and procedures is also required.

We at LMS HQ highly recommend that you also engage your IT and legal departments on what is required for GDPR compliance.

GDPR plugins

GDPR for LMS administrators

We recommend you read our “GDPR for LMS Administrators” guide.

LMS & GDPR for Educators & Learners

If you are an educator or a learner and would like to find out more about your rights under GDPR and how features in LMS can assist with protecting your data privacy, we recommend you:

Check in with your system administrators for information specific to your institution or organisation;
Read more information on GDPR in the “See also” section below.

Contents