IANAL und IANA Consumer Protector.
Keine Ahnung, wie es in AT ist, aber in DE darf meines Wissens Rabatt gegeben werden. D.h. das Schnitzel muß erstmal auf der Speisekarte den gleichen Preis haben, aber dann gibt man nach Gutdünken Rabatt.
In AR habe ich mit großer Begeisterung in einem Laden eingekauft, der 10 % Rabatt bei #Barzahlung gegeben hat! 🙂
#Bargeld #Datensparsamkeit #cash #pagoEfectivo #efectivo #dataMinimization
𝘘: “Do you retain any user interaction data for ‘quality purposes’?”
No. Zero PII, zero prompts, zero outputs. We store nothing!
First, they'll ask for your official IDs to confirm your age and identity.
This will create a large treasure trove
of sensitive data, which will attract criminals, and will inevitably leak from either negligence or malice, sooner than later.
Then, they'll claim your official ID is
unreliable, because it was stolen so many times, and demand you share your biometric data.
They will collect your face scan,
your palm scan, and even your iris scan (no exaggeration, these are all already being collected by some companies for identification). They will claim it's super safe.
This will create a large treasure trove
of sensitive biometric data, which will attract criminals, and will inevitably leak from either negligence or malice, sooner than later.
Then what? Rinse and escalate.
You will have lost control of not just your corporate social media accounts by participating to this, but to any data capable of validating your identity, to your privacy rights, to the protections you could use online to stay safe.
We don't have to wait that it escalates.
We can, and must, push back and say No now. Start to say No now.
3️⃣ ACCESS CONTROLS & DATA MINIMIZATION:
Only authorized personnel can access your data—and even then, only the minimal information needed to provide our service.
@briankrebs I work in #dataprivacy and find myself having similar thoughts: why am I working so hard to implement #dataminimization and #privacybydesign principles for my organization when these huge federal data stores probably containing all that information and more are being brazenly looted?
It's #DataProtectionDay again, and the same applies to all theme days: We need them to generate attention for problems.
We would therefore like to remind you that it is often not even necessary to establish a personal reference in order to work with data. That is why we are appealing to you today to think critically: Am I really implementing #DataMinimization consistently in my organization?
@Wuzzy well that's not #Datensparsamkeit, is it? #dataMinimization
Tiny Privacy Tip for Organizations 🔘🔒:
1. If you are not absolutely required to be able to contact people by phone, do not make a phone number field mandatory in your forms ☎️🚫
2. If you are not absolutely required to be able to mail/ship something, or visit someone in-person, do not make a home address field mandatory in your forms 📪🚫
3. Do not make mandatory (or even request) any data in a form that you do not *absolutely require* to fulfill the purpose of this form 🚫
4. If you use a third-party vendor for your forms, make sure to remove any piece of data you do not actually absolutely need to collect. If you can't, select a different vendor that will allow you to 🔒👍
Yes, this mandatory by law.
People who use social media other than Mastodon :twitter: :facebook: :meta: :
If you are still using some [BigCorpSocial™️] social media account(s),
I highly recommend maintaining a good data privacy hygiene on there. Especially because of all the data collected from these platforms, most recently, infamously, for scanning all your posts to feed For-Profit-AI-Machine™️
One important step to improve your data hygiene is to delete the older posts that are no longer useful to you (you can do this automatically on Mastodon by the way) :nes_fire:
Many [BigCorpSocial™️] have rendered this task more difficult recently by removing features previously provided to third-party developers.
BUT there is a fantastic desktop app developed by @micahflee coming up for this with a workaround! :awesome:
Semiphemeral! :birdsite:✨
Semiphemeral will make it possible for you to delete your older posts from your [BigCorpSocial™️] accounts, according to your preferences.
I don't often recommend tools like this,
but this one is a great one:
Privacy by Design ✅
From a trustworthy source ✅
Top practices for data minimization ✅
Runs locally ✅
I highly recommend it to anyone with social media accounts outside of the Fediverse.
Read on the latest developments here: https://semiphemeral.com/x-steaming-toxic-trashpit-semiphemeral-cant-come-soon-enough/
Subscribe to get updates: https://semiphemeral.com/x-steaming-toxic-trashpit-semiphemeral-cant-come-soon-enough/#/portal/signup
Donate so it gets ready faster! :rainbowdance: https://semiphemeral.com/donate/
Follow Semiphemeral on Mastodon: @semiphemeral
#Privacy #DataMinimization #DataDeletion #Semiphemeral #Twitter #X
.@CenDemTech’s @ericnull in IAPP explaining how important #DataMinimization requirements are for privacy legislation. https://iapp.org/news/a/a-view-from-dc-privacy-law-flirts-with-its-ban-it-era
Exciting Privacy News! 🔒:birdsite:
If you, like me, are a
big fan of deleting you own data online when you do not need it anymore to reduce your digital prints,
I highly recommend following this amazing project: https://semiphemeral.com/like-a-phoenix-semiphemeral-will-rise-from-the-ashes/
Semiphemeral once helped me immensely while deleting my 24,000 tweets to prepare my Twitter-Exit :nes_fire:
I am extremely pleased to read this tool will not only be brought back by its creator @micahflee but will also have incredible new features!
All built with a privacy-first mindset ✨
Thank you Micah! I can't wait to see Semiphemeral fly again.
Subscribe here to get news of its development and release: https://semiphemeral.com/#/portal/signup 👀
#PrivacyNews #Privacy #PrivacyByDesign #DataMinimization #Semiphemeral
Microsoft’s advertising company Xandr accused of violating GDPR
https://stackdiary.com/microsofts-advertising-company-xandr-accused-of-violating-gdpr/
#GDPR #Privacy #DataProtection #Xandr #Microsoft #Advertising #Compliance #RTB #DataBreach #PrivacyViolation #UserRights #DataPrivacy #Noyb #Italy #TechNews #DataSecurity #AdTech #Regulation #Legal #UserData #Investigation #PersonalData #Transparency #SensitiveData #DataMinimization #DataAccuracy #GDPRCompliance #PrivacyLaw #DigitalRights #DataControl
Gentle Privacy and Security Reminder
for Organizations 🔒🗑:
One of the easiest way for your organization to not have data stolen in a data breach, is simply to not have this data.
One of the easiest way to save your organization future headaches and costs is to simply delete thoroughly the data you do not need anymore as soon as you do not need it anymore.
Whenever possible, it's even better to not collect it at all in the first place.
You might need to retain some data of course, but when an incident occurs, you will greatly reduce the harm, damage, and cost if you keep only the minimum data required.
You cannot be held accountable for the data you simply do not have.
Keep this in mind! ✔️✨
Tiny Privacy Tip for Application Developers 🔒✨
Every piece of data you
collect on others with your application becomes a liability to you.
You are responsible for
safeguarding and keeping track of every single piece of personal data you collect.
This is a heavy responsibility.
Especially if you collect and store a lot of data.
A much easier approach is to collect only what is absolutely necessary and delete it thoroughly as soon as it is not necessary to keep it anymore. You will save yourself so many headaches adopting this practice right from the start in your software development.
Remember: You can't be liable for the data you simply never had.
This is the easiest path for you,
and the safest path for your users.
CDT’s @ericnull in @therecord_media discussing the need for #DataMinimization requirements amidst a digital landscape that is becoming increasingly vulnerable to privacy harms.
https://therecord.media/lawmakers-set-sights-on-data-minimization-with-new-bills
CDT recently filed comments to FTC regarding #COPPA. Some of our proposed suggestions include: strong #DataMinimization requirements, updated #consent mechanisms, & adoption of educational exception to parental consent w/ several important changes: https://cdt.org/insights/cdt-files-comments-with-ftc-in-response-to-coppa-updates/
A dieci anni di distanza hanno ridotto il numero di #impronte #digitali richieste per il rilascio del #passaporto italiano da sei dita a due: #DataMinimization in marcia!
#PA #sorveglianza #frontiere #datificazione #MobilitàInternazionale
ICYMI: CDT’s @ericnull blogs about #privacy reform at the state level and the importance of #DataMinimization which was featured in this weeks
IAPP newsletter 👏👏👏 https://iapp.org/news/a/op-ed-state-privacy-laws-must-include-data-minimization/
I have a data security shortcut
to share with you:
If sensitive users information
is not kept in the database,
it cannot be leaked in a data breach.
Do not collect
what you do not need ⛔
Delete all data
you do not need anymore
as soon as you
do not need it anymore :nes_fire:
