From the GGUS ticket:

1. The service should delete the all the data of users who have been in status
EXPIRED for more than a configurable period (e.g. 1 month).

2. The following fields need to be removed from the service instances at CERN:
"Address", "Phone number". If still needed in the schema (e.g. for other VOMS-
Admin instances), please make them optional.

3. Given the removed fields, the SELECT on the CERN HR view needs to be
trimmed accordingly, so we can make the view as narrow as possible.
We should then verify if that same view is also sufficient for the Indigo IAM
and EGI Check-in pilot projects.

4. The service needs to restrict further what can be seen with any IGTF
certificate: only the list of certificate subject DNs for a given VOMS group or
role shall be exposed to any authenticated user, because that functionality is
needed for constructing grid-mapfiles. Users should still be able to access
their own entry, while only the admins of a given VO shall be able to see the
details of other users in that VO.