Reply to thread

Message

<blockquote data-quote="notabot" data-source="post: 794027" data-attributes="member: 75970">Hi Wendy, I take your response at face value and believe your response is in good faith.Not marketing is not sufficient nor is the optional opt-in. All personal data (incl hashes of personal data) , when the user requests it, needs to be purged, also (before a potential deletion) you need to be able to provide to the user all the data you have on them.Also encrypting or blinding the data is not sufficient, purge is purge, gone from everywhere it went to, incl backups .As you’re a startup I take your response in good faith but for your own sake prioritize gdpr compliance , no matter where you market, no matter where your legal entity is based, no matter the language of the product, no matter if there is an opt in or a disclaimer, if you breach GDPR and can’t meet the above for any eu citizen even if your program is called “dontinstallifintheeu”, you’re on the wrong side of the law.</blockquote>

[QUOTE="notabot, post: 794027, member: 75970"] Hi Wendy, I take your response at face value and believe your response is in good faith. Not marketing is not sufficient nor is the optional opt-in. All personal data (incl hashes of personal data) , when the user requests it, needs to be purged, also (before a potential deletion) you need to be able to provide to the user all the data you have on them. Also encrypting or blinding the data is not sufficient, purge is purge, gone from everywhere it went to, incl backups . As you’re a startup I take your response in good faith but for your own sake prioritize gdpr compliance , no matter where you market, no matter where your legal entity is based, no matter the language of the product, no matter if there is an opt in or a disclaimer, if you breach GDPR and can’t meet the above for any eu citizen even if your program is called “dontinstallifintheeu”, you’re on the wrong side of the law. [/QUOTE]

Verification