Provide a custom annotation @PersonalData for each class property considered to be personal data:
- Ignore properties that map to other classes, we are only interested in stored data.
The annotation class itself shall have the following properties for setting:
- purpose: Why is this data being collected?
- isSensitive: True if he property is classified as sensitive, such as regligion, health, political
- method: The method by which this data is personal. Directly, by association
- encrypt: True if the data should be encrpted
- providedBy: Who / what provides the data
- sharedWith: An array of third parties who the data is possibly shared with
- retainFor: How long the data is to be kept for, in PeriodInterval format
- disposeBy: What is done with the data when it is no longer required/relevent. (Delete / Aggregate / Anonymise)
The SpecShaperEncryptBundle will be used to encyrpt any parameters where the annotation parameter encrypt is true.
- Extend the encrypt bundle subscriber and replace it
- The gdpr subscriber to override the select annotation function and place a check on the encrypt property.
Provide a consent form and store records of the users consent to share data.
The bundle should produce a summary of all parameters in the dabase and identify which are classified as unclassified, Personal or Special.
A report should list all personal data and its parameters as stored by the annotation.
Provide a new class annotation "GdprTable" on each entity that indicates if the table should be included in the portability output. There are probably going to need to be two types of portability output.
- Individual
- Organisation
An individual export should pull all data related to a single identifiable person.
The organisation export should pull all data for an organisation.
The GdprTable annotation should define the foreign keys and table structures for the export in both indivdual and organisation types. The PersonalData property annotation should describe what happens to the data in the export request
Provide a command that traverses all table rows in containing @PersonalData annotations.
Check the mysql row for the last date that it was modified and if it exceeds the date of disposal