Raw Record Source

{
  "$type": "site.standard.document",
  "canonicalUrl": "https:/finxol.eu/posts/gdpr",
  "description": "GDPR is a series of laws and regulations adopted in May 2016 by the European Parliament and Council to enable EU citizens to have better control over their data online.",
  "path": "/posts/gdpr",
  "publishedAt": "2020-11-15T00:00:00.000Z",
  "site": "at://did:plc:hpmpe3pzpdtxbmvhlwrevhju/site.standard.publication/3mndozltfas27",
  "tags": [
    "article"
  ],
  "textContent": "The GDPR, or General Data Protection Regulation, is a series of laws and regulations adopted in May 2016 by the European\nParliament and Council to enable European Union citizens to have better control over their data online.\nIt has been in effect from 25 May 2018.\n\nTo all non-european readers, this article is mainly intended to europeans, but you can still read the first two parts to\nknow more about GDPR.\nYou're not directly affected by it, but this initiative has sparked other data protection laws like\nthe Consumer Privacy Act in California.\n\nWhat is GDPR ?\n\nThe intent of GDPR was to gives european citizens more control over what data about them is stored and for how long.\n\nThat way, european citizens are legally backed up by the EU in terms of data protection and people or organisations who\nuse digital services are obliged to state what data they keep about you and what they do with it.\n\nThe other great point about GDPR is that it applies to everyone operating in the EU, so european citizens aren't only\nprotected on websites but also at work or even on the streets !\n\nBut it's also enforceable for companies and corporations.\n\nWhat it has already done\n\nOver the 4 and a half years since it has been acted, it has enabled several Courts of Justice within the EU to deliver\nsome, sometimes very expensive, fines to tech companies, but not only.\n\nYou can't really draw up a typical profile for people who received the 410 fines given out so far.\nSome were given to companies, others to individuals, political parties, restaurants, universities, airports,\ninstitutes...\n\nRecently, H&M got fined 35,258,707.95€ in Germany for tracking its employees, and British Airways got fined 22,000,000€\nfor being hacked as British Information Commissioner ICO said this hack was preventable.\nThe Dutch National Credit Register BKR was also fined 830,000€ by the Dutch Data Protection Authority for making their\ncustomers pay to access their private information.\nEven an individual person was hit by an 8,000€ fine for having CCTV cameras monitoring public space in Greece.\n\nThe largest fine given so far was by French Data Protection Authority CNIL to Google, who had to pay 50,000,000€.\nThe smallest was given by the Estonian Data Protection Authority to a police officer in Estonia, who was fined 48€.\n\nAlthough not directly linked to\nGDPR, the EU also fined Google 1,490,000,000€\nas part of its war on GAFAM.\n\nHow to use your rights\n\nThese laws also directly give you some power over your data.\n\nYour rights are :\n\n- The right to request reading and retrieval of your data\n- The right to request rectification of your data\n- The right to request deletion of all or part of your data\n\nIn short, GDPR theoretically gives you complete access and control over your personal data.\nBut sadly, reality is a little more complex, as some website and services use what are\ncalled 'dark patterns' to try and discourage you from\nusing your rights.\n\nConcretely, they offer these options (because they are legally obliged to) but hide them in lots of different sub-menus\nand complicated access paths to make it as hard as possible to use them.\nAnd that isn't illegal.\n\nStill, we're not going to go into much detail about that problem in this article, so let's move on to how to use your\nrights.\n\nTo help you use your rights, many websites have been created. Here are a useful links :\n\n- With JustDeleteMe, you can find information on how easy it is to delete your account\n  on many websites, but also details and links to help you do so.\n- You can download all the data from your Google account with help from\n  this Google help page.<br>\n  Before you do so, you should know that this procedure will download everything you have ever saved with Google\n  services,\n  so if you've had your account for a long time the file will be very big, and you will need a lot of time ahead of you\n  to read everything !\n- You can download all the data from your Facebook account with help\n  from this article from FossBytes.\n  As for Google this will download everything, so if you use social media a lot — not only posts, but also comments,\n  likes, conversations... — the file will be big.\n\nFor other online services or companies which don't directly offer a retrieval or deletion option from their website, you\ncan email them asking to do so.\nYou can find help for writing this letter on\nthe ICO's website\n.\n\nThey should answer favourably to your request, but if they don't reply after several enquiries or refuse to comply with\nyour request, you are entitled to start a legal challenge against them.\nYou should only go that far if the data is very sensitive or if the company isn't too big, as that kind of procedure is\noften very long and costly.\n\nAlternatively, you get in touch with a consumer association.\nThey can usually talk with companies more easily than individuals, or group together the requests of several people to\nhave more weight against larger companies.\n\n<br><br>\n\n_External resources :\nGDPR Information from the European Commission website\n,\nEvery GDPR fine since 2018,\nWhat counts as personal data ?_",
  "title": "All You Need To Know About GDPR"
}