Posts by Cynical Pie

Re: About time

And even when they do you can go to any garage rather than being forced to go to a Toyota Dealership

Re: Hooray for Avoirdupois and pounds, shillings and pence

It was never illegal to sell items by the pound, you just had to also show/also use the metric equivalent.

The most obvious example of this is the fact milk cartons in the UK show their volume in both metric and imperial

Re: "if it planned to pay them"

Except it isnt always that simple is it but then you know that.

A primary school I work with suffered a ransomware attack that had sweet FA to do with users so the training element is meaningless and the school had implemented all reasonable and expected security measures. I assume that was their fault?

I assume you will happily lose your business and livelihood for the greater good?

Re: GDPR

The flaw in your argument there is that EU DP Authorities are starting to issue fines against TikTok including the ICO intention to issue a penalty notice to the the tune of £27m

Re: Alexa in a drawer

Actually mine has pointed out special offers etc but only on items I have added to various wish lists on Amazon

Re: Clever thinking

James Cleverly... if ever there was an example that nominative determinism is utter tosh these days

Re: GDPR ?

GDPR isnt applicable here as data for law enforcement purposes is specifically outside of GDPR's remit.

It falls under the Law Enforcement directive. Same principles in essence but different piece of legislation.

That is why we have the DPA 2018 as it effectively implements both GDPR and the LED.

Re: Any bets what Samsung will say?

C. We take our data protection obligations very seriously

Re: Assuming facilities wasn't contacted

The same is true of electrical sockets in new homes, never in the right place and never enough of them!!

Re: A cunning plan

Except Sir Humphrey was competent and knew what the hell he was doing

Re: It's not marketing

Given it isn't a marketing email there is no requirement for them to provide an unsubscribe link anyway.

Its a service email that in some countries they are obliged by law to provide so whether or not you want it is largely irrelevant.

Certainly in Italy companies were legally required to provide a receipt and I am not aware this has changed.

Re: Motivation

In their defence 1 of the previous breaches happened with a smaller chain they bought out before Marriott took over and at the point of purchase the incident hadn't been identified

Re: Aim it

Further proof of Boris the Cockroach's claim that Basingstoke has nothing of value

Re: Who FORCED you to work for Elon?

Elon... Is that you:?

Re: Responding at 4am may not be effective...

You also forget reporting of incidents is a mandatory part of the DSPT for NHS organisations and was for its previous iterations under the IG Toolkit.

That's one reason why the NHS has always looked bad from a data security standpoint, they were the only organisation (and I use that collectively for all parts of the NHS) that was required to report its breaches.

In terms of the 72 hr reporting requirement the ICO take quite a pragmatic view in my experience and are happy as long as a basic notification if filed within 72 hrs and you can then update it after the window with more details.

Re: Most of us don't give a toss.

Complete Freedom of speech should be permitted, if it isn't 'complete' then it isn't truly freedom of speech is it.

What shouldn't be stopped is freedom from consequences as a result of that speech.

Case in point being the Donald who used his free speech and suffered the consequences when he incited violence.

See also Nick Griffin's appearance on Question Time several years back. The BBC got heavily criticised for giving him a platform but by doing so it exposed his total lack of credibility to the masses and saw him and his bunch of racist thugs, at least in the guise of the BNP fracture and disappear without a trace.

I did read somewhere after it happened that he was warned what would happen if he went on QT but he chose to believe his own hype and went on anyway.

Re: It's complicated

Rees-Mogg, is that you?

Re: Valid and invalid purposes

It goes further than that - the Information Tribunal have been quite explicit in their rare DP involvements (most of their cases involve FOI) that a SAR should not be used as a substitute for discovery.

What seems to escape people making SARs for this purpose is discovery is likely to actually get them more information than a SAR!!

Re: I may be wrong, but I think Amazon deliberately obstruct CCPA requests

'Get Stuffed' How eloquent you are.

The fact is they have done what they are legally obliged to do but not in a way you find convenient is a you problem not a them problem.

Yes the downloads take time and yes it is no doubt a pain but the information is there so suck it up sunshine as they have met their obligations.

Just be glad its all electronic and not physical files as well as if you think 60 links is constructive obstruction Christ knows what you would make of the SARs of over 25k pages and 1000+ documents I have dealt with previously that have taken weeks to sort out due to the mix of media involved.

Could they do it differently? Almost certainly.

Do they have to ? No they dont. it really is that simple

Re: But it is crypto

Surely it depends if they are paying for the coffee and if they will let you get an industrial strength one with nothing more than hotwater and ground beans in it or a poncy one with syrups, creams, frozen bits and dust sprinkled on top

Re: Right of removal

Well if they are spending 40 days answering a SAR they are screwed as it hasn't been 40 days for over 3 years.

Its a month from date of receipt under GDPR but this can be extended to 3 months for complex requests which I can't conceive this would be... if it is then their marketing blurb is a lie (I couldn't comment)

Re: Missing a few key points here

AFAIK it needs rapid release to effectively drive the oxygen from the environment and suppress the flames.

Thats certainly how I was told it works in an archive such as the TNA and their storerooms

Re: Surely they have to go shopping?

GDPR & DP - the minute it is for anything other than personal use, which is a specific exemption, it becomes subject to GPDR/DP.

So using a Ring doorbell to answer the door while you are in the garden or away from home is exempt processing. The minute any recorded footage is then passed to the Rozzers you are no longer processing for personal use and you need to satisfy Art 6 and potentially Art 9 of GDPR to allow the processing to be lawful.

Its a classic Information Governance 'it depends' situation,

Re: Leisure Sue Larry

I'd wager both

Particularly because ICO jobs as a rule pay at least a 1/3 less than an equivalent role elsewhere

Re: Fraudulent too...

You mean like Apple.... and any modern crowdfunded project... or in fact pretty much any company out there?

Re: Great Data Purging Revolution

GDPR is not, and never has been, about privacy.

Its about ensuring the appropriate and lawful use of personal data.

Yes that has privacy implications but it isnt the purpose of the legislation

Where's the KAboom?

Re: While she's at it

As she is Canadian I would suspect she will be back in a DP style gig in one of the Provinces there.

Im not sure she is even in the UK at the moment as she has been back in Canada for great swathes of lockdown

Re: They can buy as many new planes as they like

Same, thats why our family trip to LA next year is being done a) via Calgary and b) at increased cost just to avoid flying United.

As a bonus going the way we are we also get Premium Economy rather then bog standard... so better legroom and extra baggage allowance for all the tat my offspring will want to bring home