FYI - San Jose Public Library has a post about GDPR, which directs them to
the library's privacy policy and their Virtual Privacy Lab -
https://www.sjpl.org/blog/why-everyone-updating-their-terms-use-and-privacy-policies#.WwVx8mMXJsw.twitter
Thanks,
Becky
Sent from somewhere.
On Tue, May 22, 2018, 4:30 PM Becky Yoose <[log in to unmask]> wrote:
> <IANAL>
>
> With regard to aligning university libraries with GDPR, it might be wise
> to be consistent with the rest of the university in how they are handling
> GDPR compliance. If your organization has no GDPR compliance plan as of
> now, it's still not too late in starting a conversation with the
> organization's compliance or legal officer (which I suspect have been
> bombarded with GDPR information for quite some time now, and might still be
> trying to make sense of it all). There will be a lot of companies that will
> not be compliant by 5/25/2018, so you won't be alone. [1] [2] [3]
>
> </IANAL>
>
> Going back to Erin's original post about using GDPR as an opportunity to
> increase privacy awareness with library users, I'm not aware of any active
> programming tied to GDPR. :c( There are a multitude of sites and
> programming - library and non-library created - that do cover online
> privacy, though, and those can be pulled in to create patron programming
> and sites, if folks need ideas or a place to start. [4]
>
> Thanks,
> Becky
>
> [1] An older article outlying all the moving parts of GDPR and compliance
> on the US side -
> https://wp.nyu.edu/compliance_enforcement/2017/12/11/the-general-data-protection-regulation-a-primer-for-u-s-based-organizations-that-handle-eu-personal-data/
>
> [2] An example of an university response to GDPR -
> https://compliance.miami.edu/focus_areas/gdpr/index.html
>
> [3] Some library-related GDPR posts from the Choose Privacy Week site -
> https://chooseprivacyweek.org/?s=gdpr
>
> [4] A place to start with finding resources and programs -
> https://chooseprivacyweek.org/resources/
>
> On Tue, May 22, 2018 at 3:38 PM David J. Fiander <[log in to unmask]>
> wrote:
>
>> On point two, however, if you're a large school, and you are using web
>> analytics to gather information about usage patterns, then you ARE
>> "monitoring the behaviour of persons in the EU." According to Google
>> Analytics, we had 120 visitors to my library's website in the past week.
>>
>> Realistically, we're not going to get in much trouble about this soon,
>> but we do need to address it.
>>
>> - David
>>
>> On 2018-05-22 05:20 PM, Jodi Schneider wrote:
>> > For most US groups, as far as I can tell, this is about cookies and
>> > disclosure of what information is collected (e.g. on a privacy policy
>> > linked throughout a website).
>> >
>> > IANL, but a compliance-related email I received recently mentions the
>> > limits to GDPR’s jurisdictional provisions:
>> > "The GDPR only pertains to units 1) offering goods or services to
>> persons
>> > in the EU or 2) monitoring the behavior of persons in the EU (including
>> > through cookies on the unit’s websites). If you don’t do either of those
>> > things, the GDPR does not apply to your U.S.-based unit."
>> >
>> > On Tue, May 22, 2018 at 2:54 PM, Craig Boman <[log in to unmask]>
>> wrote:
>> >
>> >> Since we aren't getting much direction from our respective university
>> >> technology departments, is there anything LITA or Code4lib could be
>> doing
>> >> to facilitate some more discussions on the impact of GDPR for US
>> university
>> >> libraries?
>> >>
>> >> Best,
>> >> Craig
>> >>
>> >> Craig Boman, MLIS (Ph.D. student)
>> >> Discovery Services Librarian and
>> >> Assistant Librarian
>> >> Miami University Libraries
>> >>
>> >> 314 King Library
>> >> [log in to unmask]
>> >> ORCID ID: 0000-0001-7511-4078
>> >>
>> >> "There is no education as that which comes from participation in the
>> >> constant stream of events." - Jane Addams (1902, p. 93) Craig Bowman
>> Craig
>> >> Bauman
>> >>
>> >>
>> >> On Tue, May 22, 2018 at 2:48 PM, Sattler, Kelly <[log in to unmask]>
>> >> wrote:
>> >>
>> >>> Hi Erin,
>> >>>
>> >>> I’ve been thinking about it but have no concrete plans. We have a
>> >>> privacy statement linked to in our footer that I need to reread and
>> make
>> >>> sure is clear and accurate. Sadly, I’ve heard nothing from my
>> university
>> >>> yet about what they’re doing.
>> >>>
>> >>> I too am interested in what other libraries are doing.
>> >>>
>> >>> Kelly
>> >>>
>> >>> Kelly Sattler
>> >>> Head of Web Services
>> >>> MSU Libraries
>> >>> 366 W. Circle Drive (#13)
>> >>> East Lansing, MI 48824
>> >>> 517-884-0869
>> >>> [log in to unmask]
>> >>> twitter: ksattler
>> >>>
>> >>> From: <[log in to unmask]> on behalf of Erin White <
>> >>> [log in to unmask]>
>> >>> Reply-To: "[log in to unmask]" <[log in to unmask]>
>> >>> Date: Tuesday, May 22, 2018 at 2:38 PM
>> >>> To: "[log in to unmask]" <[log in to unmask]>, Code for
>> Libraries <
>> >>> [log in to unmask]>
>> >>> Subject: [lita-l] GDPR and your library website
>> >>>
>> >>> Hi folks,
>> >>>
>> >>> Is anyone making changes to your library website, sub-sites, or other
>> >>> digital platforms in order to comply with GDPR regulations?
>> >>>
>> >>>
>> >>> Bonus: if so, are you also working to increase users' awareness of how
>> >>> their data is collected and used across the library, not just on the
>> web?
>> >>>
>> >>>
>> >>> We're mulling a few options here. Our university-level IT group plans
>> to
>> >>> launch a web click-through page before users from the EU can proceed
>> to
>> >>> institutional websites, but our library servers don't fall under their
>> >>> control for this change.
>> >>>
>> >>> I think this could be an opportunity for us to increase privacy
>> awareness
>> >>> for all our users, rather than just EU visitors, and I've seen a few
>> >>> non-library websites present this info to everyone in a way that isn't
>> >>> obtrusive or alarming. But, I haven't gotten a sense of whether this
>> is
>> >>> something other library folks are considering as well.
>> >>>
>> >>> Thanks for anything you've got to share.
>> >>>
>> >>> --
>> >>> Erin White
>> >>> Head, Digital Engagement, VCU Libraries<https://www.library.vcu.edu>
>> >>> (804) 827-3552 | [log in to unmask]<mailto:[log in to unmask]>
>> >>> pronoun.is/she<http://pronoun.is/she>
>> >>>
>> >>> To maximize your use of LITA-L or to unsubscribe, see
>> >>> http://www.ala.org/lita/involve/email
>> >>>
>> >>> To maximize your use of LITA-L or to unsubscribe, see
>> >>> http://www.ala.org/lita/involve/email
>> >>>
>> >>
>>
>
|