-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
1fe5907
commit 6453ca6
Showing
6 changed files
with
95 additions
and
0 deletions.
There are no files selected for viewing
Binary file not shown.
Binary file not shown.
Binary file not shown.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,15 @@ | ||
| To perform a privacy assessment for the Austin Public Library's Meeting Rooms system, we should focus on the following areas: | ||
|
|
||
| 1. **Data Collection Review**: Identify all points of data collection (e.g., meeting room bookings, digital services sign-up) and evaluate the types of information gathered. | ||
|
|
||
| 2. **Data Usage and Sharing Audit**: Examine how the collected data is used internally and whether it's shared with external entities. Ensure all sharing complies with relevant privacy laws. | ||
|
|
||
| 3. **Consent Mechanisms**: Assess how consent is obtained from users and ensure it's done in a clear and lawful manner. | ||
|
|
||
| 4. **Security Measures**: Evaluate the security measures currently in place to protect user data from unauthorized access or breaches. | ||
|
|
||
| 5. **Policy Transparency and Communication**: Review how privacy policies are communicated to users and if they are easily accessible and understandable. | ||
|
|
||
| 6. **User Rights and Control**: Ensure users have easy access to their data and can exercise their rights over their data, including correction, deletion, and objections to processing. | ||
|
|
||
| 7. **Compliance with Regulations**: Verify that library practices align with applicable privacy regulations such as GDPR or CCPA, if relevant. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,26 @@ | ||
| The concepts detailed in the Fair Information Practice Principles (FIPPs) and Privacy by Design (PbD) have significant implications for the Austin Public Library (APL) and its associated GitHub Organization, the APL Innovation Lab. Here's how these principles can impact their operations and innovation efforts: | ||
|
|
||
| ### Fair Information Practice Principles (FIPPs) | ||
| FIPPs ensure that personal information is handled responsibly within public entities like the Austin Public Library. Here are key impacts: | ||
|
|
||
| - **Collection Limitation and Purpose Specification:** APL must ensure that data collection is limited to what is necessary and clearly define the purposes for which data is collected. This is crucial in maintaining public trust and legal compliance, especially when deploying new digital services or technologies that handle personal data. | ||
| - **Security Safeguards:** Implementing robust security measures to protect personal data from unauthorized access or breaches is essential, not only for legal compliance but also to maintain the library users' trust. | ||
| - **Openness and Accountability:** Maintaining transparency about data practices and being accountable for data handling aligns with public expectations and legal standards, fostering greater community trust. | ||
| - **Individual Participation:** This principle supports the library's efforts to empower patrons by providing them with access to their personal data and allowing them to correct inaccuracies. This can be crucial in user-centric services like library account management. | ||
|
|
||
| ### Privacy by Design (PbD) | ||
| PbD principles guide the integration of privacy from the outset of the system and project design, particularly in technology projects managed through the APL Innovation Lab's GitHub Organization: | ||
|
|
||
| - **Proactive not Reactive; Preventative not Remedial:** By anticipating and preventing privacy issues before they occur, APL can safeguard user privacy as new technologies or systems are developed. | ||
| - **Privacy as the Default Setting:** Ensuring that privacy settings are set at their highest by default means that user data is protected without requiring them to take additional steps. This is particularly important in user interfaces and online services provided by the library. | ||
| - **End-to-End Security — Full Lifecycle Protection:** Incorporating strong security practices throughout the lifecycle of data, from collection to destruction, ensures that all user data is handled securely, which is vital for library management systems. | ||
| - **Visibility and Transparency — Keep it Open:** By being transparent about how user data is handled and allowing for independent verification, APL can build trust and ensure compliance with privacy standards. | ||
|
|
||
| ### Implementation in GitHub Organization (APL Innovation Lab) | ||
| The APL Innovation Lab, which manages projects on GitHub, can incorporate these principles by: | ||
|
|
||
| - **Documenting Privacy Practices:** Use READMEs and other GitHub documentation to clearly state how projects adhere to FIPPs and PbD. | ||
| - **Embedding Privacy in Code:** Develop code that inherently respects user privacy by integrating robust security features and privacy-preserving functions. | ||
| - **Community Engagement:** Engage with the community through GitHub by being transparent about data handling practices and offering channels for feedback and contributions, which enhances accountability and user-centric design. | ||
|
|
||
| These principles not only align with legal and ethical standards but also enhance the library's ability to serve its community effectively and innovatively, fostering a trust-based relationship with its users. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,54 @@ | ||
| ### Sanitization Script Overview | ||
| The script `sanitization.sh` is designed for managing and sanitizing a Drupal site development environment using DDEV. It performs several key functions to ensure the environment is secure, sanitized, and ready for use by developers or testers. Below is a detailed walkthrough of each part of the script. | ||
|
|
||
| ### Detailed Explanation of the Script | ||
|
|
||
| ```bash | ||
| #!/bin/bash | ||
|
|
||
| # Script to manage a Drupal site development environment using DDEV | ||
|
|
||
| # Sanitize the database | ||
| echo "Sanitizing database..." | ||
| ddev drush sql-sanitize -y | ||
| echo "Database sanitized." | ||
|
|
||
| # Update the admin password for convenience | ||
| echo "Updating admin password..." | ||
| ddev drush user:password drupaladmin '111' | ||
| echo "Admin password updated to 111." | ||
|
|
||
| # Clear Drupal's cache | ||
| echo "Clearing Drupal's cache..." | ||
| ddev drush cr | ||
| echo "Drupal's cache cleared." | ||
|
|
||
| # Launch the site | ||
| echo "Launching the site..." | ||
| ddev launch | ||
| echo "Site launched." | ||
|
|
||
| # Export the database | ||
| echo "Exporting the db to aplcms-minus.sql.gz..." | ||
| ddev export-db --file=aplcms-minus.sql.gz | ||
|
|
||
| # Print the end time | ||
| echo "Script ended at: $(date)" | ||
| ``` | ||
|
|
||
| ### Functionality of the Script | ||
| - **Sanitize the Database:** The `ddev drush sql-sanitize -y` command sanitizes the database by anonymizing user data and other sensitive information. This is crucial for protecting personal information according to the principles of Privacy by Design and the Fair Information Practice Principles. | ||
| - **Update Admin Password:** For environments where frequent access by multiple developers or testers is necessary, setting a standard admin password can improve convenience without compromising the non-production status of the environment. | ||
| - **Clear Drupal’s Cache:** This step ensures that no residual data or settings interfere with the sanitized state of the development environment. | ||
| - **Launch the Site:** Useful for quick testing to ensure the environment operates correctly post-sanitization. | ||
| - **Export the Database:** Outputs the sanitized database to a compressed file, making it portable and secure for distribution or backup purposes. | ||
| - **Script Completion Notification:** Notifies the user of the script’s completion and logs the date and time for tracking purposes. | ||
|
|
||
| ### Integration with Privacy Principles | ||
| - **Compliance with Privacy by Design:** By sanitizing the database at the beginning of the script, personal data is protected from unintended exposure right from the development phase. | ||
| - **Adherence to FIPPs:** The script helps ensure data quality and security, key components of the Fair Information Practice Principles, by routinely sanitizing and securely handling the database. | ||
|
|
||
| ### Conclusion | ||
| This script is an excellent example of implementing technical and procedural safeguards to manage privacy effectively in a development environment. It not only enhances security but also streamlines the development process, ensuring that privacy compliance is maintained throughout the lifecycle of the data and the project. | ||
|
|
||
| Feel free to use and modify the script as necessary to fit your specific operational needs and privacy requirements. |