Administrators can delete or anonymize User Associated Data (UAD) using management tools that aid compliance efforts with the EU’s General Data Protection Regulation (GDPR). Out of the box, the UAD management tool supports Liferay DXP applications (Blogs, Documents and Media, etc.), and you can also anonymize data stored by your custom applications.
This task is made easier for
Service Builder applications.
At the core of the anonymization effort, you must identify the model entity’s
fields to anonymize. With Service Builder, attach anonymization attributes to
elements in the
service.xml file. For the entire DTD for
Service Builder, see
These two are the most important attributes for the UAD framework:
uad-anonymize-field-name=fieldNameattribute indicates a field whose value is replaced by that of the anonymous user in the UAD deletion process.
uad-nonanonymizable=trueattribute indicates data that cannot be anonymized automatically and must be reviewed by an administrator.
Once your application uses the UAD framework to manage User data, there are more features in Liferay DXP 7.2 that make searching and deleting User Associated Data even easier.