When authenticating users, the following best practice is recommended:
If the only requirement is to log usage of semantic artefacts, it is best to base authentication on third party services compliant with OpenID (GeANT in the EU, ORCID, eduroam, etc.)
If more information is required about the user (for example if a subscription service is involved), then the prescriptions of the legislative environment need to be met (for example GDPR in Europe).
When authenticating users, the following best practice is recommended: If the only requirement is to log usage of semantic artefacts, it is best to base authentication on third party services compliant with OpenID (GeANT in the EU, ORCID, eduroam, etc.) If more information is required about the user (for example if a subscription service is involved), then the prescriptions of the legislative environment need to be met (for example GDPR in Europe).