“The right to be forgetten” - don’t store customer data forever, “just in case”…
Privacy by default - Store and use data in the interest of the user / customer in first hand.
GDPR - Simply Explained in 3 Minutes
https://www.youtube.com/watch?v=n5WJOncaHt4
“Art. 17 GDPR Right to erasure (right to be forgotten)”
https://gdpr-info.eu/art-17-gdpr/
“The EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years - we’re here to make sure you’re prepared?.”
https://www.eugdpr.org/
“General Data Protection Regulation”
https://en.wikipedia.org/wiki/General_Data_Protection_Regulation
Sweden, one out of 28 EU member states, has a new authority with this aim in focus.
Trust me, it will happen.
In this sense, Sweden is a small country.
If you store data from customers / users / clients within the Union, the GDPR applies.
[quote=367646:@Jakob Krabbe]Sweden, one out of 28 EU member states, has a new authority with this aim in focus.
Trust me, it will happen.
In this sense, Sweden is a small country.[/quote]
If a company does not have a European base then I suppose the most they could do is issue a Europe arrest warrant for the directors which would restrict their travel to outside the Schengen area which might be embarrassing but that would be about it.
[quote]Who does the GDPR affect?
The GDPR not only applies to organisations located within the EU but it will also apply to organisations
located outside of the EU if they offer goods or services to, or monitor the behaviour of, EU data subjects.
It applies to all companies processing and holding the personal data of data subjects residing in the
European Union, regardless of the companys location.[/quote]
https://www.eugdpr.org/gdpr-faqs.html
These lines are written in so many places on the web and posted in videos in Youtube. You think they’re all wrong? Why don’t you tell them!
[quote=367678:@Jakob Krabbe]https://www.eugdpr.org/gdpr-faqs.html
These lines are written in so many places on the web and posted in videos in Youtube. You think they’re all wrong? Why don’t you tell them![/quote]
Nobody is saying that it is wrong, but from a practical point of view there is little that can be done to enforce it.
[quote=365454:@Kem Tekinay]More, the multi-nationals will be able to afford compliance. How will small-to-medium businesses compete?
Big regulations favor big companies and work to stamp out their smaller competition.[/quote]
Crony Capitalism
Please post BREXIT crap on a political forum not here thanks
The links are not about Brexit per se, more about the EU’s love of regulations.
Most of us selling software are using a 3th parties like Paddle or FastSpring. So it is a B2B between you and that 3th party.
Meaning your only REAL lawful client is that 3th party. They have to deal with all this stuff and ‘their’ clients.
Of course, that 3th party will provide you ‘their’ customers email (and license keys) to make your software work with it (when needed).
It’s all a big storm in a small glass.
One of the first things to do here in Germany is to put all the policy texts on the website to avoid cease-and-desist warning from someone else’s lawyer.
As you may know here are certain lawyers would send you letters (with bill to pay) about missing things in your imprint and I don’t want to risk getting such a letter about missing privacy policy.
You can make such a policy with generator. e.g. this one can make English and German texts:
https://dg-datenschutz.de/muster-datenschutzerklarung/
see also German news page:
https://www.heise.de/ix/meldung/Datenschutzgrundverordnung-Neue-Abmahngefahren-fuer-Websites-3936980.html
Here’s a UK one as well. Even though Christian’s link has an English option, I’m not sure if there are differences between the requirements of each country.
http://www.seqlegal.com/free-legal-documents/privacy-policy
Well, the generator has dozens of options to click like whether you use Twitter integration.
Just to cover all things that may be included.
e.g. I include Google Analytics, but don’t currently use it.
Here’s an example of a company / website located outside EU (Israel and United States) that has “GDPR Awareness Notice” at the bottom of the page.
https://monday.com/