Discover and read the best of Twitter Threads about #gdpr

Most recents (24)

ΔΕΚΤΗ ΑΠΟ ΤΗΝ ΟΛΟΜΕΛΕΙΑ ΤΟΥ ΣΥΜΒΟΥΛΙΟΥ ΤΗΣ ΕΠΙΚΡΑΤΕΙΑΣ Η ΑΙΤΗΣΗ ΑΚΥΡΩΣΗΣ ΓΙΑ ΤΗΝ ΕΣΦΑΛΜΕΝΗ ΔΙΑΔΙΚΑΣΙΑ ΕΚΔΟΣΗΣ ΤΗΣ ΕΓΚΥΚΛΙΟΥ ΑΠΑΛΛΑΓΗΣ ΑΠΟ ΤΟ ΜΑΘΗΜΑ ΤΩΝ ΘΡΗΣΚΕΥΤΙΚΩΝ ΓΙΑ ΤΟ ΣΧΟΛΙΚΟ ΕΤΟΣ 2020-2021.
Το γραφείο μας εκπροσώπησε επιτυχώς στην Ολομέλεια του Συμβουλίου της Επικρατείας γονείς και μαθητές που ζήτησαν να ακυρωθεί η εγκύκλιος της 10.8.2020, λόγω παραβίασης του #GDPR και παράλειψης οργάνωσης του ισότιμου μαθήματος που θα παρακολουθούν οι απαλλαγέντες.
Η απόφαση 1362/2021 της Ολομέλειας δημοσιεύθηκε την 17.9.2021 και ακύρωσε τις σχετικές πράξεις του Υπουργείου Παιδείας, για τυπικούς λόγους, δηλαδή για έλλειψη νομοθετικής εξουσιοδότησης της Υπουργού (παράβαση άρ. 43 παρ. 2 εδ. β' του Σ.) και για μη δημοσίευση στο ΦΕΚ.
Read 18 tweets
Video of @CommonsDCMS's pre-appointment hearing this morning with John Edwards, the Government's preferred candidate for Information Commissioner parliamentlive.tv/Event/Index/15… #FOI #dataprotection

I haven't watched the whole session yet, but 🤦
#GDPR be like 🤔 Rubin's vase
Edwards on #FOI: "For some requests, I think it is legitimate to ask a requester to meet the cost of some of that administration. Otherwise, you see, there is a potential for cross-subsidisation of people who are over-using or even abusing those rights …"

Not great.
Read 5 tweets
The thinly veiled costs of age verification.

Guilt until innocence proven

Universal dependence on supplier security, data protection, downstream supplier due diligence

Ability to resist state data demands

Ethics of master ID store, verification tools, monitoring provider
With the constant cloud of this at the far end of the threat assessment, with all of the stops between here and that extreme
We are at this point on the trust and totalitarian control continuum.

Not the ideal backdrop for a conversation about finger, eye, face, palm, DNA printing kids

And the rest of us, to make sure we are not too young to surf porn, research something too ‘woke’, or plan a protest
Read 24 tweets
UK Information Commissioner replacement candidate from New Zealand: “No more box ticking! Unlock the power of data!”

US Wild West: “Uncheck this tithing box and you are the enemy.”

#DarkPatterns #DataRights #GDPR
FYI: UK data protection enforcement was slightly above average while it lasted. bbc.com/news/technolog…
Just wait until UK hires an American ICO commish someday, always tapping from the anglosphere. I’m open for recruitment but I’m obviously insufficiently neoliberal for the job.
Read 4 tweets
In "The New Antitrust/Data Privacy Law Interface," @TempleLaw's Erika M Douglas presents a fascinating look at the tensions between privacy and competition.

yalelawjournal.org/forum/the-new-…

1/ A control room where a group of people in business attire st
If you'd like an unrolled version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2021/08/24/ill…
It's only fitting that Douglas published her paper in the @YaleJREG, as that's the same journal that kickstarted the modern antitrust revolution when it published @linakhanFTC's "Amazon's Antitrust Paradox," while she was a law student.

yalelawjournal.org/note/amazons-a…

2/
Read 47 tweets
Why do we need #GDPR #DSAR and data subject rights?
In @TechRegJournal I show that:

cf Westin they provide individuals #DueProcess rights;

cf #Rodotà they provide collective/societal control over systems of decision making.

techreg.org/index.php/tech… /1
Contrary to wide held believe, I do not find support for understanding access rights either as “privacy as control” or “informational self-determination”.
Hope this can stimulate discussion on the broad ranging purpose of data protection law, the importance of having some form of a right to explanation, and the essential function of collective action in the area data protection.
Read 3 tweets
RT @ilumium@mastodon.cloud
Crazy: chbmeyer says he asked #Renault what kind of personal data his car collects & shares with the company. #GDPR

Here you go, dystopian shit:

- Charging history
- Temperature
- Unique car & battery IDs
- Kilometres driven (battery)
- (1/3)
Operational state of engine
- Driving & parking history
- Data on speed, acceleration & deceleration
- Number of times ABS has been activated
- When airbags are deactivated
- Name, first name & email of owner
- Other electric vehicles in vicinity
- (2/3)
Read 3 tweets
It would be wise for any businesses considering @UpGuard as a vendor to cease doing so. I don’t know exactly what is happening over there, but something has gone very wrong recently. The whole environment does not pass the smell test.
Also worth noting- @UpGuard’s in house counsel is insulting me by offering a “separation agreement” of two months pay if I agree to not sue or talk about what is going on over there.

UpGuard recently took $500,000 from US govt PPP covid recovery funds. I feel very insulted.
Read 7 tweets
It really feels like we're in the grip of #NHSdataFEVER...
What's going on?

In last few weeks:

#GPDPR - a huge change in how data that your GP saves in your personal GP record gets shared with the Government. The #DPIA (Data Privacy Impact Assessment) still awaited
#TIGRR - a bonkers, breathless AI-centric libertarian wish-list of data deregulation including abolition of some Articles from our own #GDPR laws (NOT EU law, it's UK law)
Tomorrow there will be a new NHS Data Strategy - which conflates many different uses of data to try to send a ALL DATA GOOD MOAR PLEASE message without any real clarity of thought.
Read 8 tweets
Hey @Apple and @AppleSupport ... i really love your humor with this targeted ad... but i'm now waiting since days for your (reasonable) answer on my denied data privacy requests. Next step is then some legalese, pesky lawyers and applied #GDPR/#DSGVO fun. #GimmeMyData ImageImageImageImage
I'm gonna track all of this "funny adventure" from now on in this thread. Data Privacy request #1 is here:
Read 11 tweets
Yesterday, the Taskforce on Innovation, Growth and Regulatory Reform published a report outlining their vision to “refresh the #UK’s approach to regulation now that we have left the EU”. A thread on the life of #privacy post-#Brexit. (Trigger warning: it doesn't look good). 👇 1/
The report emphasises "#consumer #data" as "highly profitable." Something to note: the report mentions "#consumers" 52 times while mentioning "#citizens" 11 times. 2/
gov.uk/government/pub…
It then describes the #GDPR as inflexible and onerous: "In a survey by DataGrail 49% of business decision makers reported spending over 10 working days a year just to sustain GDPR compliance, with 12% spending over 30 working days a year" 3/
Read 13 tweets
I certainly don't disagree with @AdaLovelaceInst's five messages...

adalovelaceinstitute.org/blog/distrust-…

...but a few points of clarification:

1) The #NationalDataOptOut, while it was (cack-handedly) introduced alongside #GDPR in May 2018, had in fact existed since #caredata - when it... Image
...was known as a #Type2 opt out - in case you were wondering about the derivation of #Type1s.

2) There was no announced date for the "expiration" of #Type1 opt-outs - certainly NOT "June 2021". There's no mention of this in the #GPDPR #DPN issued on...

nhs-prod.global.ssl.fastly.net/binaries/conte… Image
...12 May 2021, and one has to wonder who suggested this to the authors. And why. (A subtle attempt to 'rewrite history'?)

3) #caredata did NOT "lead to" #Caldicott2; indeed, Dame Fiona's Review predated the scheme by months - and was instrumental in...

assets.publishing.service.gov.uk/government/upl… Image
Read 5 tweets
The EU's General Data Protection Regulation (#GDPR) has been a mixed bag, but at its core is an exemplary and indisputable principle: you can't give informed consent for activities you don't understand.

1/ A giant eyeball whose pupil has been replaced by the EU circ
Since the dawn of online commercial surveillance, ad-tech sector maintained the obvious fiction that we agreed to allow it to nonconsensually suck in our private information, either by clicking "I Agree" on a garbage novella of unreadable legalese, or just by using a service.

2/
GDPR exposes this "consent theater" for a sham. It says, "Look, if you think users are cool with all this surveillance and data-processing, you've got to ASK THEM. Lay out each use of data you want to make, one at a time, and get consent for it."

onezero.medium.com/consent-theate…

3/
Read 20 tweets
In a meeting today, Elizabeth Denham from @ICOnews assured me that she was “relaxed” about the UK keeping “high data protection standards”.

The Government have today appointed IDS @MPIainDS, Theresa Villiers MP and @GeorgeFreemanMP to front the axing.

gov.uk/government/pub…
@ICOnews @MPIainDS @GeorgeFreemanMP This is what they say about #GDPR.
And they say they measure this in whether they can see an end it “pointless cookie banners”.

#GDPR could end this nonsense today, if @ICOnews had the courage to act on it.

What IDS et al seem to be saying is that transparency is fine, don’t worry about the ads.

Call me worried
Read 6 tweets
We are going to court. Our lawsuit takes aim at Google, Facebook, Amazon, Twitter, Verizon, AT&T and the entire online advertising/tracking industry by challenging industry rules set by IAB TechLab. ⁦@ICCLtweeticcl.ie/rtb-june-2021/
The online advertising industry causes the world's biggest data breach. We are going to court to stop it. iccl.ie/rtb-june-2021/
Our evidence includes the “IAB Audience Taxonomy”, the data broker industry rulebook that specifies what can be in companies hidden dossiers about you: Your health problems, your debt...
iccl.ie/rtb-june-2021/
Video: a peek inside the system building secret dossiers about you.
Read 9 tweets
Tech monopoly apologists insist that there's something exceptional about tech that makes it so concentrated: "network effects" (when a product gets better because more people use it, like a social media service).

They're wrong.

1/ EFF's interoperability banner graphic, a kind of Rube Goldbe
(If you'd like an unrolled version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:)

pluralistic.net/2021/06/11/tec…

2/
Tech is concentrated because the Big Tech companies buy up or crush their nascent competitors - think of Facebook's predatory acquisition of Instagram, which Zuckerberg admitted (in writing!) was driven by a desire to recapture the users who were leaving FB in droves.

3/
Read 44 tweets
So, #dataprotection and #GDPR people.
As regarding the forthcoming caredata2/GPDPR extraction of GP records to NHS Digital:
NHS Digital asserts that the onus to uphold the right to be informed rests with GP practices.
I agree.
The BMA however say....
“As this is a legal direction, responsibility for communicating these changes to the general public sits with NHS Digital and the Department of Health and Social Care.”

and....
“We are concerned about the lack of public information being provided by NHS Digital and we have raised this with them directly, as this isn’t something practices should be left to do”.

....
Read 9 tweets
Small cap/high growth seems to THE obvious way to riches - right.

But how do we actually find them?

More often than not, they're already trading at high multiples and has a lot of HYPE.

In 2021 we've had 10 interesting Danish IPO's I will list below.

All small cap

⬇️⬇️⬇️⬇️⬇️
1/

#Baqtiquant

$BACTIQ

Small cap tech company supplying #solutions optimizing #water usage in many industries. One industry is big data farms (a lot located here in Denmark). BactiQuant helps #Facebook and #Apple to clean their water #cooling systems.

Current P/S: 35,8
2/

#NordInvestments

$NORD

Small cap tech company #automating #investing for people with "#robot advisors". 100% digitalized and customized based on clients needs, risk profile and time frame. Became #2 robot investing company in #Denmark quickly.

Now managing >1 billion DKK.
Read 12 tweets
You have just 6️⃣ weeks to opt-out of allowing your ➡️entire⬅️ GP record to be permanently uploaded to @NHSDigital.

You can opt-out - now - and request a Type 1 objection be put on your GP record and your family's.
You can opt back in at any time in the future - if you want.
Guess who's back .
Back again.
Care.data2 is here.
Back from the dead 🧟‍♂️ after 5 years.
Launched during the fog 🌫 of COVID-19. Of course.
When your GP surgery is overwhelmed with other matters.

Time is running out 🏃 to opt-out. The clock 🕒 is ticking
Perhaps CareData was never really dead, just "resting" 🐦...
It's the biggest NHS data grab 🖐️ of all time.
Don't lose control.
More info, including how to opt-out:
nhsdatasharing.info
gpdpr.info
medconfidential.org/for-patients/g…
#privacy #GDPR
Your data autonomy.
Read 3 tweets
@SpelthorneBC how long does it usually take for your monitoring officer to reply to a residents formal complaint when it has already been upheld that a #conservative #Councillor - namely Cllr Michelle Gibson - DID breach #GDPR when she gave my address to her other half please?
@shamusdoherty @cazbie16 @Sammy_18_ @Lisa_SEND @TheRealGrumpDad @CharlieL28 @SENWorldcom @L4ASurrey STILL rumbling on🤔 @ICOnews as the holder of my own data can i freely share my communications? The DPO at #Spelthorne council upheld my GDPR complaint about Cllr Gibson! #GDPR
I have of course raised this as a formal complaint no #Councillor should feel free to misuse their power to use residents personal data to allow someone to try to intimidate them! It’s absolutely disgraceful!! #ConservativeGovernment #LocalElections2021 #LocalElections #politics
Read 9 tweets
Time is a serious operational problem for #GDPR enforcement. Today, the Dutch DPA issued a fining report of 58 pages. Last week the Spanish AEPD needed 184 pages! It takes time to draft these reports, as each one is unique. Not counting the time spent on the investigation.
2/ Data Protection Authorities are not in the business of writing books. They are in the business of enforcing the #GDPR. But if GDPR enforcement requires decisions of the volume of books, such enforcement can never be systematic or high-volume (like traffic fines).
3/ Ergo, the DPA-model, which dates back from the ‘70’s/80’s, when data processing operations were limited and easy to oversee/investigate, is not sustainable in our information society. Resources are limited by default, and selective enforcement violates the equality principle.
Read 9 tweets
[Jurisdiction Note 2021-106]
Gerechtshof Arnhem-Leeuwarden (NL), 17.12.2020, 200.278.124/01
uitspraken.rechtspraak.nl/inziendocument…
On the interpretation of Art. 6 I c) in distinction to Art. 6 I f) #GDPR in the transmission of debtor data to a central credit register (CKI) 1/4 #teamdatenschutz
Decision is issued with recourse to the standards of the Court of Justice Hof 's-Hertogenbosch, decision of 06.08.2020, 200.270.589_01 & 200.270.589_02 (uitspraken.rechtspraak.nl/inziendocument…) 2/4
Summary: Purpose specification in the Dutch Financial Supervision Act sufficient to justify transfer of debtor data under Art. 6 I c). In line with EC 45, no further information in the law was required for "legal obligation" (e.g. on individual processing operations covered) 3/4
Read 6 tweets
"Wanting it badly is not enough" could be the title of a postmortem on the century's tech-policy battles. Think of the crypto wars: yeah, it would be super cool if we had ciphers that worked perfectly except when "bad guys" used them, but that's not ever going to happen.

1/ A haystack with a magnifica...
Another area is anonymization of large data-sets. There are undeniably cool implications for a system that allows us to gather and analyze lots of data on how people interact with each other and their environments without compromising their privacy.

2/
But "cool" isn't the same as "possible" because wanting it badly is not enough. In the mid-2010s, privacy legislation started to gain real momentum, and privacy regulators found themselves called upon to craft compromises to pass important new privacy laws.

3/
Read 16 tweets
The CDC's eviction moratorium in an incredibly important piece of public-health law: people facing homelessness may not shelter in place when they're sick, and people who are rendered homeless are at risk of both contracting and spreading covid.

1/ Arthur Rothstein, 1915-1985 "State highway officials mo
Despite this, many states and cities have treated the moratorium as a suggestion, not a binding law, and, of course, it's hard to get justice when you've just been evicted (the CDC seems to have brought ZERO enforcement actions against violators).

2/
That's why the latest interim rule from the @CFPB is so important: it affirms the CDC rule and makes many other parties liable for its violation, including, notably, landlords' lawyers and debt collectors.

files.consumerfinance.gov/f/documents/cf…

3/
Read 24 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!