The IIS.NET Website and GDPR Data Subject Request processing

Last updated: April 25, 2018

GDPR DSR Processing Summary

The IIS.NET website serves as a resource for those using Internet Information Services by providing content contributed by website members, including forum posts and downloads.

The IIS.NET website provides "in-product" General Data Protection Regulation (GDPR) Data Subject Request (DSR) processing for authenticated members to view, correct, object, export, and forget personal data.

The IIS.NET website also provides blogging space to bloggers, using the Orchard CMS platform. As such, we are considered to be the processor, and the hosting platform has provided the blogger the ability to self-serve DSR requests.

Data Subject to DSR Processing

The IIS.NET website stores content contributed by website members, including forums posts and downloads. Additionally the IIS.NET website stores profile information supplied by website members.

Personal data stored includes your email address, avatar, name, location, occupation, interests, website address, blog address, Twitter username, bio, signature, public email, MSN IM, AOL IM, Yahoo IM, and ICQ, and login credentials.

Comments on blogs are unauthenticated and are therefore not subject to DSR processing, as there is no way to validate the author.

DSR Delete Interface Detail

The IIS.NET website uses both an internal website username/password and external oAuth accounts for authentication. As an authenticated IIS.NET website member, you can manage your external accounts, including removing the registered account as a login for the IIS.NET website, here: https://login.iis.net/manage/managelogins. Note that this only removes the association between your IIS.NET username and the external account. Your IIS.NET website username and profile information will remain on the website.

You can request that your IIS.NET website profile be deleted by clicking the "Close my account" link here: https://forums.iis.net/user/editprofile.aspx. Note that all of your personally identifying information will be removed. Your username will be changed to a non-identifying username in the format uid9999999.

You can request that your Microsoft Account be deleted here: https://account.microsoft.com/

DSR Export Interface Detail

The IIS.NET website stores content contributed by website members, including forums posts, articles of the day, and hosting gallery reviews. Authenticated website members can both view and export content that they contributed. The export format is JSON.

The IIS.NET website provides "in-product" processing for authenticated members to View, Correct, and Export data, for Profile, Forums Posts, and Community Downloads via the My Data page: https://forums.iis.net/mydata.

Authenticated website members can request that the IIS.NET website Forget them by requesting that their IIS.NET website profile be deleted by clicking the "Close my account" link here: https://forums.iis.net/user/editprofile.aspx.

Links to Public Documentation

The following links explain the JSON data format and include details for how to import JSON-formatted data into SQL Server:

For any questions not covered in this document, please use the "IIS.NET Site Operations Help" link on the contact form at https://www.iis.net/contact-us.