ONLINE HELP
 WINDEVWEBDEV AND WINDEV MOBILE
This content has been translated automatically.  Click here  to view the French version.
Help / Developing an application or website / GDPR
  • Overview
  • Implementation
  • Defining items with personal data
  • Starting the GDPR audit
  • Implementing the records of processing activities and printing the folder
WINDEV
WindowsLinuxJavaReports and QueriesUser code (UMC)
WEBDEV
WindowsLinuxPHPWEBDEV - Browser code
WINDEV Mobile
AndroidAndroid Widget iPhone/iPadIOS WidgetApple WatchMac Catalyst
Others
Stored procedures
Overview
A GDPR audit is available to easily identify and monitor personal data in a WINDEV, WEBDEV or WINDEV Mobile application.
For more details, see GDPR: Concrete solutions.
Implementation
The steps for implementing the GDPR audit are as follows:
  1. In the data model editor, defining the "Personal data" items.
  2. Starting the project audit.
  3. Implementing the records of processing activities.
  4. Editing the folder.

Defining items with personal data

Items with GDPR-relevant data can be defined in the data model editor.
To define the personal data:
  1. Open the analysis associated with the project.
  2. If a file item corresponds to personal data:
    • Select the data file in the analysis graph (or in the "Analysis" pane).
    • Display the field description window ("Field description" option in the data file context menu).
    • In the table presenting the list of items, the "GDPR" checkmark is used to indicate whether an item contains personal data:
    • Check "GDPR" for the relevant items.
    • Validate.
  3. Generate the analysis.
Remarks:
  • In the data file description window ("Options" tab), the "Enable the "personal data" option when creating items" option indicates that any new item created in the data file will have the "GDPR" option checked by default.
    The "GDPR" option can be unchecked at any time at item level if it is not required.
  • The RGPD property is used to determine whether the "RGPD" option is checked for an item.
Attention Setting the "GDPR" option in the analysis makes the analysis incompatible with previous versions. This feature is available from version 23 Update 2. If the analysis is shared between several projects, once the "GDPE" option is implemented, this analysis can only be opened by a product in version 23 or later.

Starting the GDPR audit

To start the GDPR audit on the current project configuration:
  1. On the "Project" tab, in the "Audit and performance" group, expand "Static audit" and select "Audit of personal data (GDPR)".
    Note The GDPR audit can also be launched from the data model editor: under "Analysis", in the "Analysis" group, click on "GDPR audit".
  2. The window that is displayed includes several tabs:
    • Audit by data source: This view enables you to find all the data concerned by the GDPR as well as advice (encryption requirements, visibility, etc.).
    • Audit by project element: This view allows you to check the personal data accessed by an element (a window, for example). This allows you to check (if necessary) the access requirement and to perform the modifications (deleting or checking the access for example. The elements based on a query containing data affected by GDPR are also listed.
Attention The GDPR audit lists the uses of personal data only for the current project (and project configuration), linked to the analysis for which the GDPR data has been defined. If the analysis is shared between several projects, the audit must be performed in each project.
Reminder: The GDPR audit provides information on the use of "personal" data defined in the analysis. To comply with the regulation, the personal data must also be secured. You can for example:
  • Encrypt data (for the HFSQL databases, all you have to do is specify it in the data model editor).
  • Protect databases with login credentials: simply define users/passwords in the HFSQL Control Center.
  • Protect the opening of data files by password (HPass on HFSQL databases).
  • Encrypt the communications (HFSQL allows you to restrict the opening of connections to encrypted connections) and use SSL (https).
  • etc.

Implementing the records of processing activities and printing the folder

In the GDPR audit, the "Additional information" tab is used to:
  • Create or include a record of processing activities.
    To do so, expand and select the desired option:
    It is possible to:
    • select an existing record of processing activities ("Browse" option). All file formats can be used. The files in docx and xlsx format will be automatically opened and included in the printed GDPR folder.
    • create a record of processing activities (from a template or from an empty document).
  • Pr&int the GDPR documentation.
    All you have to do is click the "Print the folder" button.
    Note: If a treatment register has been specified, it will be included in the printed file. This folder presents the description and use of items containing personal data in the project.
See also
Minimum version required
  • Version 23
This page is also available for…
Comments
Click [Add] to post a comment

Last update: 01/08/2025

Send a report | Local help