Today I filed a legal complaint against Goteborgs University and Region Uppsala here in Sweden for unlawful processing of my personal health data.
My health care provider (Region Uppsala) provided information relating to my medical care to Goteborgs University without my consent.
Goteborgs University then processed that data for the purpose of a research project, without informing me (as per Article 14 of the GDPR) despite having the means to do so.
Pleased to say I completed Data #Privacy Framework certification for one of my US clients.
It took months but now I can tell my client they no longer need to spend hundreds of thousands of dollars a year negotiating contracts with SCCs.
As an independent consultant, it was also nice to save my client hundreds of thousands more, by removing the need for them to a big law firm/big 4 consulting firm to get this done.
Happy to accept ad hoc projects from other US companies looking to certify.
I am confused - why do so many people think that Terms and Conditions absolve corporations of their legal obligations? For example - every time Meta or Alphabet are caught breaking the law - there are inevitably a large number of people saying "But you agreed to this in the terms and conditions".
This is nonsense - but I hear it literally dozens of times a week. How can we stop this fallacy?
In what can only be seen as Alphabet's blatant refusal to obey EU law, it was announced over the weekend that they would introduce Bard to Android Messages App and intercept all messages (past and future) for the purpose of training it - in breach of EU's rules on interception of communications under Article 5(1) of Directive 2002/58/EC.
To make it worse Alphabet know this is illegal after they were caught intercepting WiFi communications in 2010 with their Streetview cars.
As such, today, I filed an open letter complaint with the Irish Data Protection Commission calling for an immediate global ban on Alphabet's plans in order to protect the confidentially of hundreds of billions of private communications.
Sadly I cannot post the letter here as my Mastodon instance doesn't allow for pdf attachments, but you can read it here:
@ErikJonker it doesn't matter where it rolls out, EU persons communicate with people outside of the EU all the time, which is why I have called on the DPC to issue a global ban, because even in jurisdictions where all party consent is not required (such as jurisdictions which only require single party consent) Eu persons messages will be intercepted and as such their rights will still be subject to a breach.
I was interviewed by the BBC this morning for a podcast they are planning in relation to the "Pay or OK" system which is rapidly creating a 2 tier class system for fundamental rights - where those who can afford it are able to keep their #privacy by paying for online services and those who can't are forced into behavioural profiling at the expense of their fundamental right to Privacy.
The gap between the rich and poor is getting wider - our human rights are now for sale...
@echo_pbreyer Qwant (founded with EU Commission money) have started to deploy illegal adblock detection and are blocking people from using the search engine unless they disable their adblockers.
So EU funded company, breaking EU law to secure profits...
They should be forced to pay back every single penny they received from public funds and prosecuted.
@theregister have published an article on my complaint to the Irish DPC in relation to Meta opting people in to their "Free with Ads" tier for Facebook and Instagram:
This is very interesting because I had a chat with the Irish DPC last week about my complaints against Meta and Youtube in relation to "Pay or OK" and unlawful detection of adblockers.
Irish DPC informed me that they were waiting on their own action until the #EDPB had concluded their ongoing investigation.
Today Meta removes the paywall on Facebook - which, would seem to indicate that there is an incoming enforcement action from the EDPB - I see no other reason why Meta would back down.
So I have it on good authority that two companies I filed complaints against for non-compliance with #GDPR and #ePrivacy Directive are facing significant penalties in the near future.
I filed one of the cases almost 4 years ago and the other 2 years ago with two different Supervisory Authorities.
Just had to file a complaint against Hilton for not complying with direct #marketing opt-outs, non-compliance with #GDPR Articles 5,6,7,12,13,21 and 25 as well as Article 5(3) of 2002/58/EC for their web site, #mobile application and #email service which all use tracking technologies without consent.
So I was looking at various solutions to make our underfloor heating, SMART. The problem is all of the systems out there are shit from a #privacy perspective (they require you to connect to their servers in the cloud) which is an absolute no go for me.
So I just ordered an 8 channel relay board, ESP32 and a bunch of dumb 2 wire actuators.
Not only will i be able to set them up so I can automate my hearting system through Apple Home and Home Assistant - but I saved huge amounts of money!
Why are airlines permitted to get away with this shit? Booked two bonus flights to SFO this summer using points and a voucher to get free Business Class tickets.
Problem is you cannot use them for returns only one way so I have to book return flights - the price - 3300 Euros each
However, there is currently a campaign which allows me to book 2 economy outgoing with 2 premium economy returns for a total of 2000 Euros (return for both people).
Firefox has a new hidden setting auto-rejecting cookie banners (not just hiding them eg Brave). Piloting in 🇩🇪 in Private Browsing but anyone can enable:
Go to the URL about:config
Set cookiebanners.ui.desktop.enabled ->True
Go to Settings->Privacy, turn on Cookie Banner Blocker.
@mikarv probably a bad idea to use this given that so many sites still unlawfully enabling the non-existent legal basis of Legitimate Interest under their TCF banners. Rejecting consent on these banners does not unset the LI toggles.