Share this page!

David Carroll Profile picture
Twitter logo
23 Apr, 5 tweets, 2 min read
If you’re a @criteo user (you probably are!) residing anywhere in the world you are entitled to exercise your personal data rights under the GDPR. criteo.com/privacy/your-r…
For the curious nerds, everyone gets data rights because Criteo is based in France. I had rights to my Cambridge Analytica data because it was processed in UK. But you have to reside in the EU to get extra territorial data rights for data that is not processed there.
Nick Clegg is very very worried about the splinternet (data localization) but he does a fine job of arguing it’s nearly arrived. Meanwhile, he’s not urging US and India to simply and urgently adopt GDPR adequacy in light of Schrems II. He’s slow rolling instead. Gotta ask why.
For the newbie nerds, GDPR adequacy means EU approves data protections with other zones to sustain open data trade. Schrems II is the court’s momentous strikedown of the second special data treaty between US and EU to enable this adequacy. Very messy now.
If there was global GDPR adequacy then you wouldn’t need to worry about where you or your data lives in any given context. You would simply have equal data rights as a fundamental human right. You would enjoy general data protection.

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with David Carroll

David Carroll Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @profcarroll

David Carroll Profile picture
23 Apr
where can i get me one of them “vaccinated af” t-shirts i’ve been seeing on zoom lately
emoji embroidered baseball caps?
💉🧬🚫🦠
sports jerseys with vax maker in all caps and last two digits of your batch number
Read 15 tweets
David Carroll Profile picture
14 Apr
Feel like GPDR could have used an upper limit of open investigations before algorithmic disgorgement automatically kicks in. Lost count of the open probes into Facebook Ireland a while ago. A failsafe for this colossus scenario.
“DPC now has 15 live investigations into FB’s apps…incl 10 into FB proper, 3 into Instagram and 2 into WhatsApp. 

The Irish data regulator has yet to conclude any of its Facebook probes…” ft.com/content/0bd7fc… via @MsHannahMurphy
Congratulations to FACEBOOK for accruing 15 separate GDPR probes. No other company even comes close.
Read 4 tweets
David Carroll Profile picture
7 Apr
Why the Facebook contact uploader vulnerability and subsequent hackbreachleak matters. Phone numbers are the ideal attack surface to force multiply other vulnerabilities. Facebook exposed non-public information and needs to answer for it.
As I learned from today’s Spaces call:
—FB’s contact sync was vulnerable to a malicious attacker who could enumerate phone numbers to harvest FB IDs. This revealed non-public information
—attacker then scraped accounts by FB ID
—API limits woefully inadequate/trivial to cheat
—botnets would enable easy circumvention of throttling of lookups per user per session
—Facebook silently changing user prefs made it confounding to know how your phone number was used; default settings put risks on users
—expect probe of who knew what when as FB deflects & spins
Read 4 tweets
David Carroll Profile picture
7 Apr
LIVE: Inside scoop twitter.com/i/spaces/1RDxl…
Wow. @ashk4n reveals that his 2FA phone number which was different from the phone number he associated to his account was leaked in the contact sync vulnerability. Private information was most certainly breached. Facebook must be pushed on its subterfuge, when it knew what when.
Wow. @intdc explains how Facebook silently changing its confusing privacy settings set the stage for this catastrophic leak by making it too difficult to realize the difference between the visibility of your phone number vs. lookup by phone number. Cambridge Analytica déjà vu.
Read 7 tweets
David Carroll Profile picture
5 Apr
You can now check @haveibeenpwned to see if your Facebook account data is among the half-billion leaked and circulating. You know that breach that Facebook insists has no responsibility for because it’s an “old” breach. haveibeenpwned.com
FWIW I deactivated my Facebook in 2018 so it was protected from the breach. The only safe account is an inert or deleted account.
CAVEAT: @haveibeenpwned only checks if your email is in leaked data. Most of the Facebook records are uniquely identifiable by phone number, not emails. So unless someone else builds a phone query tool or Facebook notifies folks… ¯\_(ツ)_/¯
Read 4 tweets
David Carroll Profile picture
30 Mar
Proactively managing one’s own health data strikes me as an act of personal interest and liberty. Likewise, private interests are at liberty to impose requirements upon customers as terms and conditions of service. The problem is we don’t enjoy fundamental #DataRights in the USA.
In other words, we might find a digital vaccine record more acceptable if all data collecting entities were legally bound to disclose our data, its processing, sharing, and provide unobstructed revocation of consent. Exists in the EU. Not in the USA. #DataRights
So until the USA establishes fundamental #DataRights similar to the EU, CA, VA, etc., paper vaccine records could minimize digital monetization at least, and help maintain the minimal protections afforded by HIPAA. Without any safeguards tho, concerns of eventual abuse are real.
Read 5 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!

Like this author's thread?

Get emails when @profcarroll has new unrolls!

Check out other threads from @profcarroll!

Read all threads by @profcarroll