1) Where can I respectively my users find the "Komento Dashboard"? I don't see it anywhere accessible from the frontend?

2) I would prefer to do the data export myself. As I'm using the Joomla Privacy features, I'd like to reply to a GDPR information request with a single e-mail including both the exported data from Joomla (user account data, user's articles) and from Komento. Is there a way for me to do the export for a certain user from the backend so I can include the resulting file in my e-mail? Or even better: are there plans to integrate with the Joomla privacy component? From my point of view, this is the only way to go when it comes to collecting user data from different extensions by different developers.

http://yoursite.com/index.php?option=com_komento&crondata=1

3) How do I handle deletion requests? It might not be sufficient to tell a user to delete all of their (maybe thousands) comments manually on their own when they can't even remember which articles they have commented on. However, the backend doesn't seem to allow filtering or sorting by user in the "Comments" section.

Currently we do not have plan to integrate with privacy component, is there any other 3rd party component did this integration?

We're going to integrate with the solutions provided by Joomla 3.9. Not all our extensions collect data, so many won't need to be updated. But extensions such as JCal Pro, jInbound, OSDownloads and others will get updated. For Shack Forms, we've already created GDPR features. We'll be moving it to Joomla 3.9's GDPR data reporting.

Do you mean when the user request to delete his account completely on the site or he just want to delete all his comment data on the site?

I'm not sure, I only use one other component that collects user data and it does not integrate with it. On Joomlashack they state:

Anyway, if you don't plan to integrate it would still be helpful if the admin could initiate the data collection for a user from the backend to include the archive manually into the e-mail with the rest of Joomla's collected data.

Well, for the first option I would simply delete the Joomla user account (What happens to the comments then? Are they deleted entirely? Is the user data still saved somewhere within Komento?) and for the second I've noticed it's possible for the user to do it from the dashboard.

Yes, as long as user request to download data from Komento component and once the system archive all the data from this user, you can download it from backend as well.

But if you delete user account from backend, about they comment will still exist on the site, but we do have a setting for transfer all his comment ownership to your site owner if you have set your site owner user id from this setting "Owner For Orphan Items" (screenshot : https://monosnap.com/file/25FXZUyoQ6UCXgUQSdMqzIJlmJKrF1 ).

• ability for the administrator to delete all comments of a user as well as all likings, attachments and so on of that user - in general: to delete all actions said user has done in Komento (as required by GDPR!)
  
• a way to show "here was a comment but it has been removed", "user deleted" in the frontend so that other users understand the context of remaining comments (or can try to guess). That's much better than simply removing them (no context at all, there might be comments with answers without the corresponding question) or keeping them under a different user name (not GDPR compliant as personal information might be included in the comment itself like the user's name at the greeting at the end of the comment)
  

I understand, but that's not what I mean. I would like to create the archive without the user having to request it. Let's say a website uses a comment component, a newsletter component, a gallery component with user upload and a polling component from different developers. Including the data stored by Joomla natively the user would have to use five different forms/mechanisms to exercise his right of access and data portability (articles 15 and 20 GDPR). That's not very customer friendly.

It's not transparent to other users what has happened then, it just looks like the comments were written by me or "Administrator" or whatever I call it. From my point of view, the ideal and transparent solution needs the following:

- ability for the administrator to delete all comments of a user as well as all likings, attachments and so on of that user - in general: to delete all actions said user has done in Komento (as required by GDPR!)

a way to show "here was a comment but it has been removed", "user deleted" in the frontend so that other users understand the context of remaining comments (or can try to guess). That's much better than simply removing them (no context at all, there might be comments with answers without the corresponding question) or keeping them under a different user name (not GDPR compliant as personal information might be included in the comment itself like the user's name at the greeting at the end of the comment)

Currently we do not have allow admin to download the user data from backend, but you can manually work edit the data from database for now, you can check my attached screenshot below. (modify the `userid` value which you would like to download)

And if you do not want to notify the user who can download their data on frontend, you can comment out this line of code under this file on your site : JoomlaFolder/administrator/components/com_komento/includes/gdpr/gdpr.php (Check my attached screenshot below)

I will log this into our issue tracker to allow admin to search specific user id from the comment listing page from backend, so admin can able to view this specific user comment from backend.

So what you suggested is only show this label text "User deleted" as user's name and show another context in the comment "e.g. here was a comment but it has been removed"?

Admin can now search for comments created by specific user using the search filter of id: xxx
New users view at the back-end to allow admin to manually archive data for GDPR

Yes, exactly. Maybe text and "User deleted" could be in grey color as well to convey an "inactive" state.