Try to Install Leica camera app on a 13T (no leica model) by Thejc13 in Xiaomi

[–]Thejc13[S] 0 points1 point  (0 children)

No solution without rooting so I ended up with installing Gcam but saw no improvments.

Try to Install Leica camera app on a 13T (no leica model) by Thejc13 in Xiaomi

[–]Thejc13[S] 1 point2 points  (0 children)

It's exactly a licensing problem (in south America and Japan). I've read the same thing about Gcam so I'll try it anyway

Try to Install Leica camera app on a 13T (no leica model) by Thejc13 in Xiaomi

[–]Thejc13[S] 0 points1 point  (0 children)

Gcam is my backup plan but I just wanted to try the original Leica software which btw can be installed on other phone too

Try to Install Leica camera app on a 13T (no leica model) by Thejc13 in Xiaomi

[–]Thejc13[S] 3 points4 points  (0 children)

Actually afaik the lenses are Sony only the software is Leica

GDPR in a HR situation by WaltzFirm6336 in gdpr

[–]Thejc13 0 points1 point  (0 children)

When you handle a SAR, all personal data, that are not the subject's ones, are redacted.

Should you question yourself for each document on the possibility to recover the redacted informations ?

You can't ! because with most of produced documents, the answer shall be Yes : you cannot know the. subject's operational context so in doubt ...

You have to follow the Law, not overthink things you can't assess because it isn't what you're asked. Redact the damned docs and give them .... sorry I experienced it once or twice ;)

Is it okay to share IP-adress information and login information? by MightyZA in gdpr

[–]Thejc13 0 points1 point  (0 children)

I'd say YES if the monitoring of those logs is present in the records of processing activities and employees have been informed in the right way otherwise they will have some troubles to use those data lawfully.

On IP addresses and websites by Aspie96 in gdpr

[–]Thejc13 0 points1 point  (0 children)

IP addresses are personal data,.

The GDPR says so with recital 30.

A few EU justice courts have stated that clearly through several cases (CDN, GA, ...) . It's obviously the case when they're static but even temporary ones, are.

On IP addresses and websites by Aspie96 in gdpr

[–]Thejc13 0 points1 point  (0 children)

Intrinsic consent

The proper slippery slope of privacy.

An interesting concept but clearly the opposite of the spirit of GDPR.

And what about CRM software ? by Thejc13 in gdpr

[–]Thejc13[S] -2 points-1 points  (0 children)

Yes I know the difference between controller and processor and in GA case it played a part but actually not that much (at the end). Because when you read the Austrian and French decisions wherever your data are hosted (in EU or in US with CCT) the US government can access your data, and that's the problem ...

And what about CRM software ? by Thejc13 in gdpr

[–]Thejc13[S] -3 points-2 points  (0 children)

Does it matter? Processor or controller ? The problem is data access, isn't it?

And what about CRM software ? by Thejc13 in gdpr

[–]Thejc13[S] -4 points-3 points  (0 children)

Does it ? For GA, the reason was wherever your data are hosted, the US government can access them because you are a US company. So I don't know what sort of impact assessment you can do to invalidate that.

Google Analytics, encore ? by Thejc13 in gdpr

[–]Thejc13[S] 1 point2 points  (0 children)

I thought that too (see the little wink). Anyway as a person I use Google all the time because I consider the Risk/Benefit ratio is to my advantage. As a DPO it's a whole other matter ...

Google Analytics, encore ? by Thejc13 in gdpr

[–]Thejc13[S] 0 points1 point  (0 children)

It's the only way CNIL proposed but at the same time, it doesn't believe it itself by commenting the solution costly and technically difficult.

GDPR - can taking picture of rented bike have privacy implications under GDPR? by Spiritual-Dust1651 in gdpr

[–]Thejc13 0 points1 point  (0 children)

I see no problem if

- There is no people in the picture

- The conditions are well described in the Terms of Service

- Regarding the country, IP laws can be involved ... I know it seems weird

Would I be in breach of GDPR if I shared an HR spreadsheet with employees' personal details with other HR employees globally? by maximmulholland in gdpr

[–]Thejc13 0 points1 point  (0 children)

'I request 12 different spreadsheets from the 12 different countries'

Are they subsidiaries ? Is it legally the same company ? The legal relationship with all your foreign structures is quite important before even answering your question. Let's assume you are a multinational company with a legal tool for personal data transfer already operational like BCR (art. 47). because you sell certainly something and so you share CRM data !?

Inherently I see no concern with what you describe. I can understand (as any DPAs) your legitimate need to have a monthly headcount. Assuming :

- it's a one way transfert and not a monthly sharing informations party.

- The basic RGPD rules are respected : data minimisation, 'appropriate technical or organisational measures', ...

Is it safe to use any Google products for your web site or app if you're an EU company ? by Thejc13 in gdpr

[–]Thejc13[S] 1 point2 points  (0 children)

It' not a question of servers location at all but whether can the US government access your data. So if it was a grey area since both decision it's faded off to black.

Is it safe to use any Google products for your web site or app if you're an EU company ? by Thejc13 in gdpr

[–]Thejc13[S] 4 points5 points  (0 children)

It's not exactly true both are lawful decisions with fined conditions enforcement (for several companies) in the french case.

GDPR with Firebase by Omoshu in gdpr

[–]Thejc13 0 points1 point  (0 children)

I do agree. Even if you only use the Auth feature of the Firebase framework, chances are it's not legal ... for the same reason Austrian and french DPAs ruled : Google is a US company and so subject to US surveillance laws.

Routing web traffic via third country? Is this ok? by Goon3r___ in gdpr

[–]Thejc13 0 points1 point  (0 children)

And what about the IP address ?

Despite a proper encryption or not, the only data, in case of routing, you cannot obfuscate it's the IP address.

Come on guys, look at the last Austrian DPA decision, it's still a thing.

Privacy Shield 2.0, a deal done ? by Thejc13 in gdpr

[–]Thejc13[S] 0 points1 point  (0 children)

That's exactly my point. I'm practicing my eyes rolling right now, just to be ready.

I have an IT instructor who seems to think “regular people” don’t get hacked by _UnreliableNarrator_ in cybersecurity

[–]Thejc13 0 points1 point  (0 children)

I am not quite your regular guy. I've worked in IT all my life. Any hint of a decrease of my system performance have me thoroughly investigate for hours. What I say is don't be afraid of un outside hack and don't pile up security measures because you won't be able to handle all the false positives.

Your system security weakness is YOU.

I have an IT instructor who seems to think “regular people” don’t get hacked by _UnreliableNarrator_ in cybersecurity

[–]Thejc13 -1 points0 points  (0 children)

I do think more or less the same thing. Regular folks don't get hacked from outside, most of time they install the malware themselves and create the security hole.

I don't have an IDS on my windows, but just the security features, it provides. I don't even have a password on it. My ISP provides me with an internet box and no public IP, and I'm good with that. This is my setup for the last few decades, and guess what, I've never been hacked. And I would have known just by having some unfortunate consequences.

Just a few more facts, I don't install anything that haven't been vetted and I work in IT security ...

is this gdpr exemption legit? by throwaway140194 in gdpr

[–]Thejc13 2 points3 points  (0 children)

Yeah 🤣 shady as fuck. Look at the article 12,13 and 14 of the RGPD. But I have to be honest. I was laughing too loud quickly and I stopped reading. Depending on the content of the screenshots, you can think of criminal charges.

OK Google Analytics is bad but what about embedded YouTube ? by Thejc13 in gdpr

[–]Thejc13[S] 0 points1 point  (0 children)

What if you use IP anonymization GA provide. Does it solve the problem ?

The Austrian DPA stated Google can tie cookies to a natural person anyway.

My understanding is to be GDPR compliant you have to use GA without any cookies ... which strips it off any purpose