Came across the following today:
We store users after they leave a company, in case they return or join a different member company. We don’t use their data for commercial purposes, this is just their own course completions. Does GDPR apply here, and if so, does anyone have a working system in place? My thoughts were to md5 hash firstname lastname username email for any users placed in the “former members/european members” folder, which is where we place former members.
Ah, we have thousands of EU users. Our instance is in the US, but we want to comply with GDPR for our EU clients. We have a London office which - good news I guess - doesn’t have to be GDPR compliant anyway anymore?