-
47 votes
-
Question about GDPR
I am in the EU. I asked a company in which I had an account to delete my account. They told me they would do that as long as I sent them an ID and a postal address. This is to ensure that "I am...
I am in the EU.
I asked a company in which I had an account to delete my account. They told me they would do that as long as I sent them an ID and a postal address. This is to ensure that "I am the right person".
I never gave them an ID and a postal address in the first place so how would that verify anything, and I'm using the email that I used to sign-up with them to ask for the deletion.
Am I in the wrong to believe that this should be easier? Are they misinterpreting the GDPR or am I?
What are my options if I do not want to send my ID and postal address?
--
Their arguments are:
Article 5(1)(f) of the GDPR requires us to meet security obligations in data processing. Since data deletion is permanent, we need to ensure that the request is indeed from the person concerned.
Furthermore, Article 12(6) of the GDPR states: "…when the data controller has reasonable doubts concerning the identity of the natural person making the request referred to in Articles 15 to 21, he may request the provision of additional information necessary to confirm the identity of the data subject."
10 votes -
Meta (Facebook / Instagram) to move to a "Pay for your Rights" approach
33 votes -
Your Fitbit is useless – unless you consent to unlawful data sharing
74 votes -
European Commission adopts new adequacy decision for safe and trusted EU-US data flows
15 votes -
No Instagram Threads app in the EU: Ireland's Data Protection Commission says Meta's new Twitter rival won't be launched there
48 votes -
Stop using Google Analytics, warns Sweden’s privacy watchdog, as it issues over $1M in fines
28 votes -
Reddit users who tried to delete all their posts during the blackout inadvertently left behind everything inside the temporarily-private subreddits
54 votes -
Spotify fined in Sweden over GDPR data access complaint – coming more than four years after a complaint was lodged by noyb
9 votes -
Facebook owner Meta hit with record €1.2bn fine over EU-US data transfers
22 votes -
Meta prohibited from use of personal data for advertisement in Europe
22 votes -
A guide to potential liability pitfalls for people running a Mastodon instance
15 votes -
A Danish city built Google into its schools – then banned it
12 votes -
Norway wants Facebook fined for illegal data transfers – European regulators are finalizing a decision blocking Meta from transferring data to the US
6 votes -
Denmark bans Chromebooks and Google Workspace in schools over data transfer risks
25 votes -
Covid testing company "selling customers' DNA"
12 votes -
noyb issues more than 500 GDPR complaints in aim to end “cookie banner terror”
22 votes -
Three years later: Did the GDPR actually work?
7 votes -
Italy takes action against TikTok following girl’s death
5 votes -
I spent a year deleting my address online, then it popped up on Bing
20 votes -
No cookie for you - Github removes all non-essential cookies
24 votes -
[SOLVED] US websites no longer work, at all, in EU (?)
So, I had an issue with the radionouspace.net website, referenced here. Since then, I've started hitting the exact same issue on a few other sites ... webpage never resolves, the browser just...
So, I had an issue with the radionouspace.net website, referenced here. Since then, I've started hitting the exact same issue on a few other sites ... webpage never resolves, the browser just spins its wheels until it times out.
I went thru and systematically shut down all of my add-ons, no joy. Tried other browsers, does not work anywhere ... except, oddly, sometimes, in TOR. On a hunch, I fired up my VPN service and tried to connect thru a US-based VPN server ... and there it is.
I have now confirmed, multiple websites (I'm assuming these are all US-based -- have not checked) no longer resolve for me, here in Hungary. Can anyone, anywhere else in the EU, confirm this?
I'm guessing this is the US response to the latest GDPR ruling against data-sharing across the Pond, but I'm on a "news fast" and haven't been keeping up-to-date ... anyone care to fill me in -- the "in a nutshell" version?
Update: Definitely something local-ish, probably specific to my ISP. VPN thru Hungary works, non-VPN thru Hungary does not.
10 votes -
A legislative path to an interoperable internet
9 votes -
Analysis of UK charity websites finds that tracking is prevalent, with almost all of the most popular charities including trackers for advertising or data brokers and failing to comply with GDPR/PECR
8 votes -
Only 9% of visitors give GDPR consent to be tracked
8 votes -
US officials are ramping up criticism of the GDPR, which they say protects cybercriminals
17 votes -
Facebook accused of trying to bypass GDPR, slurp domain owners' personal Whois info via an obscure process
9 votes -
Grandmother ordered to delete Facebook photos under GDPR
12 votes -
Nearly two years after Europe's GDPR privacy law came into effect, supporters are frustrated by lack of enforcement, poor funding, limited staff resources and stalling tactics by the tech companies
10 votes -
Twitter removes privacy option, and shows why we need strong privacy laws
17 votes -
Brave has filed a formal GDPR complaint against Google for infringing the GDPR “purpose limitation” principle with an internal data free-for-all
12 votes -
Sweden fines Google $8 million for right-to-be-forgotten violations – a failure to comply with Europe's GDPR after they failed to adequately remove search results
11 votes -
Prompted by Brexit, Google will move UK users' data out of Irish jurisdiction so they are no longer covered by EU privacy rules
21 votes -
Google sends a unique Chrome browser identifier through Chrome when you visit their websites
14 votes -
Twitter announces that the plan to delete inactive accounts is now on hold, but was primarily aimed at EU accounts due to GDPR
14 votes -
Interpreting GDPR data requests: Why does British Airways need to know that I'm 98% LGBT?
10 votes -
Swedish data protection agency has issued the country's first GDPR fine after a school was found improperly using facial recognition technology
7 votes -
Security researcher successfully used false GDPR "right of access" requests to obtain extensive personal information about someone else
8 votes -
The Hamburg Commissioner for Data Protection and Freedom of Information has banned Google from listening to Google Home recordings in the EU for three months
9 votes -
Reddit user requested all the personal info Epic Games has on him and Epic sent that info to a random person
20 votes -
Maciej Ceglowski's Senate testimony on privacy rights and data collection in a digital economy
11 votes -
Ireland is blocking the world on data privacy - it's the designated lead regulator for many companies under EU privacy law, but it's in bed with the companies it should be regulating
9 votes -
The CNIL has imposed a penalty of fifty million euros against Google for breaches of the GDPR
12 votes -
Netflix, YouTube, Amazon and Apple accused of GDPR breach
27 votes -
Facebook says new bug allowed apps access to private photos of up to 6.8m users
33 votes -
Mozilla co-founder's Brave files adtech complaint against Google
15 votes -
Who controls your data? Nine reporters in London, Paris, New York & San Francisco filed more than 150 requests for personal data to 30+ popular tech companies
8 votes -
Spotify user requests GDPR data, gets 250 MB of extremely detailed data, down to the headphone brand.
@steipete: Tried the GDPR data export from Spotify. By default, you get like 6 JSON files with almost nothing. After many emails and complaining and a month of waiting, I got a 250MB archive with basically EVERY INTERACTION I ever did with any Spotify client, all my searches. Everything.
34 votes -
First GDPR ruling: German court finds collecting domain registrar techincal/admin contact info violates Article 5
17 votes -
ICANN't get no respect: Europe throws Whois privacy plan in the trash
11 votes