OpenLink Software and the GDPR

As a passionate supporter of the EU’s General Data Protection Regulation (GDPR) and related initiatives to provide users with control over Personally Identifiable Data, here’s a simple breakdown of what happens to the data captured during interactions with OpenLink Software registration forms, and how you can take control of that data.

Registration & Profile Management Technology

OpenLink Data Spaces (ODS) is the underlying technology platform that drives our user registration and profile management services. This platform enables loose-coupling of user Identification, Identity Claims Verification (Authentication), and Resource Access Control (Authorization).

Every user registered with our systems has the ability to authenticate identity credentials as login or registration time using a variety of authentication protocols. Currently supported protocols include:

  1. WebID-TLS

  2. OpenID (original)

  3. OAuth

with OpenID Connect to be added to that list very soon.

User Login and Registration Page — Loosely-Coupled Identity and associated Authentication Protocols

Registration & Profile Management Activity

Our services allow you to register with the system using a variety of protocols. Ultimately, we create a user-profile-associated account that isn’t publicly available unless you expressly opt-in to profile publication. Here are the main entry points to your profile data managed by our systems:

The only mandatory piece of personally identifiable information that we store in our systems is your Email Address, by default, for communication purposes.

Email subscription lists for periodic notifications are also opt-in, but in line with GDPR regulation.

Profile Management (via our [Online Shop](https://shop.openlinksw.com/profile.vsp)) — Personal Details Tab

Profile Management — Connected Identities associated with other Accounts

Profile Management — Digital Identity Cards (X.509 Certificates) bearing Identity Claims

We never store credit card information. All interaction with payment service providers takes place through encrypted communications.

Partner Data Sharing Programs and Activities

We do not exchange user data collated by our systems with any business partners. Likewise, we do not broker your data for sale via any personal profile data oriented data exchanges.

You (not us) has full control over access to your information held in our systems, courtesy of the modern Attribute-based Access Controls (ABAC) built into our ODS platform.

  • Controlling access over parts of your profile data

Controlling Access to specific parts of your Profile Data

  • Access Controls Interface for basic Role-based Access Controls.

Basic Access Controls — Basic Role-based Access Control

  • Access Controls Interface for sophisticated Attribute-based Access Controls (ABAC)

Advanced Access Controls —Using a selection of pre-configured Attribute-based Access Controls

  • Attribute-based Access Control driven by a SPARQL Query Template — the most sophisticated option for controlling access to your profile data

Advanced Attribute-based Access Controls using a SPARQL Query Template

ODS Account Deactivation

ODS accounts may be deactivated with a few clicks.

  1. Log into your existing account on My.OpenLinkSW.com or ID.MyOpenLink.net.

  2. Click the edit link at upper-left (seen alongside the Profile link).

  3. Click to the PersonalMain tab

  4. If you are certain you want to deactivate this account (there is no confirmation dialog!), click the Deactivate button found at the top of the data form.

Alternative Profile Management View with Account Deactivation Button

Data Removal

To have your personal identifiable data removed from our systems, contact us with the subject “Account Deletion Request” and the following text in the body of the mail:

      To whom it may concern: I hereby request removal of my personal profile data, associated with {email-address}, from your systems. 

Clicking on the text above will automatically create a suitable message in our web-contact form; you should only need to change the {email-address} placeholder to the actual email address associated with your ODS account.

This may also be sent by email to using your regular email client.