|
| 1 | +# MSC4265: Data Protection Officer contact in `/.well-known/matrix/support` |
| 2 | + |
| 3 | +[GDPR] Article 37 Nr. 1 requires data controllers and processors to designate a |
| 4 | +Data Protection Officer (DPO). Furthermore, Article 37 Nr. 7 requires that the |
| 5 | +DPO's contact details be publicised. This is most commonly done via the |
| 6 | +privacy policy document. |
| 7 | + |
| 8 | +In Matrix, a homeserver's privacy policy is currently only made accessible via |
| 9 | +APIs during [account registration]. This prevents clients from easily displaying |
| 10 | +the contact information at later times and adds to the user's burden in finding |
| 11 | +them. |
| 12 | + |
| 13 | +Additionally, homeservers themselves can have a similar need to get in touch |
| 14 | +with another server's DPO, for instance to inform them about requests for |
| 15 | +erasure as required by [GDPR] Article 17 Nr. 2. |
| 16 | + |
| 17 | +While a server's support document under [/.well-known/matrix/support] can expose |
| 18 | +an "admin" contact, this might not be specific enough for the purposes outlined |
| 19 | +above – especially since server administrators and data protection officers are |
| 20 | +usually different roles in companies. |
| 21 | + |
| 22 | +The present proposal attempts to address these problems by exposing a dedicated |
| 23 | +DPO contact in the server's support document. |
| 24 | + |
| 25 | +## Proposal |
| 26 | + |
| 27 | +A new role `m.role.dpo` is introduced for `Contact`s in |
| 28 | +[/.well-known/matrix/support] |
| 29 | + |
| 30 | + { |
| 31 | + "contacts": [ |
| 32 | + { |
| 33 | + "email_address": "[email protected]", |
| 34 | + "matrix_id": "@dpo:pizza.org", |
| 35 | + "role": "m.role.dpo" |
| 36 | + }, |
| 37 | + ... |
| 38 | + ], |
| 39 | + "support_page": "https://www.pizza.org/support" |
| 40 | + } |
| 41 | + |
| 42 | +Servers are *not* required to provide an `m.role.dpo` contact. |
| 43 | + |
| 44 | +## Potential issues |
| 45 | + |
| 46 | +The DPO contact details being duplicated in two places introduces the |
| 47 | +possibility that they get out of sync. Given that these contacts should rarely |
| 48 | +change, this seems like a small problem, however. |
| 49 | + |
| 50 | +## Alternatives |
| 51 | + |
| 52 | +Rather than exposing the DPO's contact details, the support document could |
| 53 | +publish the privacy policy URL. This could also be considered an additional |
| 54 | +feature rather than a replacement, however. |
| 55 | + |
| 56 | +## Security considerations |
| 57 | + |
| 58 | +None. |
| 59 | + |
| 60 | +## Unstable prefix |
| 61 | + |
| 62 | +While this proposal is unstable, `m.role.dpo` should be referred to as |
| 63 | +`org.matrix.msc4265.role.dpo`. |
| 64 | + |
| 65 | +## Dependencies |
| 66 | + |
| 67 | +None. |
| 68 | + |
| 69 | + [GDPR]: https://eur-lex.europa.eu/eli/reg/2016/679/oj/eng |
| 70 | + [account registration]: https://spec.matrix.org/v1.13/client-server-api/#terms-of-service-at-registration |
| 71 | + [/.well-known/matrix/support]: https://spec.matrix.org/v1.13/client-server-api/#getwell-knownmatrixsupport |
0 commit comments