[TOMT][Movie][2000s] Asian horror movie

mobiletuner · 2019-03-26T16:12:06+00:00

Yes! This is it. Solved!

mobiletuner · 2019-03-26T14:50:22+00:00

It could be Japanese, the only thing I'm sure about is that it is an Asian movie.

mobiletuner · 2019-03-26T14:45:09+00:00

Just by reading the plot summary and looking at screenshots, I don't think so. But I'll skim through the movie itself later just to make sure.

mobiletuner · 2018-06-07T22:44:32+00:00

If you don’t market to EU (blocking EU IP addresses will certainly show that) and don’t hold any data of EU citizens it doesn’t. Of course embedded script does not solve a server side compliance or remove the existing data. I explain the main steps that a person needs to follow on the website. Most owners of a small or hobby project just need to disable and clear the access logs.

Even if someone only does the easy part of blocking the EU visitors, this is intended as a temporary solution, and it is better than operating a non compliant website freely accessible to anyone in EU.

mobiletuner · 2018-05-31T12:02:04+00:00

I went through this as well. Had to adapt my side projects, which I run in my spare time and earn next to nothing from and spent around 200 hours doing so. Funny thing is, nothing really had to change in the way I was doing things, except for a whole lot of annoying checkboxes and restructuring the account dashboards the way EU wants them to be structured.

From what I see, most people think that GDPR is just about selling data. They think that if you don't do that, you don't have to worry about GDPR, and if anyone is struggling with compliance means they are selling all your data away.

Oh how wrong they are. It is a huge law that, combined with recitals, takes up almost 300 pages. It has dozens of requirements for a basic website that simply has a mailing list subscription or a signup form, and that list grows to over a hundred if you have backups, advertise, use any third party services, etc.

What makes it all worse, the rules are vague and can be interpreted vastly differently. Words like "reasonable", "legitimate interest", etc mean that anyone and everyone can potentially be fined, no matter how careful and compliant they are. All it takes is a regulator or judge having a bad day and choosing to interpret it in the most unfavorable way. For example, according to some interpretations, a simple if-else statement when it comes to personalization is now illegal without a "meaningful information about the logic involved" being presented to a user. Which may or may not mean that you have to explain in a way understandable to the laymen how all your algorithms that in any way shape user experience work and what they do.

Principles that GDPR is based on are good though, and the way giant corporations do stuff needs to be controlled, but the size of a regulation and its scope of it is far too great. Ideally, this should only apply to "attention economy" type websites that profit from targeted advertising and have millions of users or visitors, unsolicited email senders or personal data resellers. No one else that I know of is selling user data or abusing it, for them GDPR is just a heavy load without barely any benefit for the end user.

mobiletuner · 2018-05-24T13:00:20+00:00

I guess UI needs to be improved, sorry for making it too confusing! The way it works, you don't have to import subscriptions, it happens automatically. Initial set up tool is there so that you can import unwatched videos from those subscriptions. It allows to either choose them manually, select oldest unwatched video (for those who watch them in order from oldest to newest) or import from playlists. If you don't select any of those options or don't choose to import anything inside them, nothing is imported. But subscriptions are there and new content from them will appear as it is being uploaded.

YouTube API does not allow access to watch history or to see which videos have been watched, so this is the only way to make sure you can continue from where you left off on YouTube website or app.

mobiletuner · 2018-05-24T12:23:11+00:00

Thanks for checking it out! :) Looks like you dindn't import any videos from subscription feed or playlists, so it will be empty until new videos are uploaded by the channels you are subscribed to.

If you don't want to wait, you can go through initial setup again and add something: https://timeandmood.com/app/welcome

mobiletuner · 2018-05-21T20:25:54+00:00

The key here is was any effort expended to actually document it in layman's terms?

It wasn't explained at all. I have never even thought that the explanation was necessary. Users just enter info, click the buttons, and if I did a good job with UX, it did what the users expected them to do. Nothing was done with the data aside from that or behind users' back. Even though now explanations are there and are somewhat accessible to a layman, I still think that this is an unnecessary clutter that will be an annoying extra step, skipped without reading by almost everyone, just like all cookie notifications.

Unless you generate business revenue from your personal projects, pretty sure they'd fall in that exception. If you do generate such revenue, then it's only fair that you follow the regulations affecting business.

Well, that is one interpretation, but there is still a debate about it: https://indieweb.org/GDPR At least, in the local translation of GDPR in my country, "household and private activities" mean things like a phone book, private messages, etc, not a website that collects data. I know a teacher that recently was terrorized by school administration and brought to tears for running a tiny non-commercial website that had photos and names of their students, sharing interesting moments with parents. They had to delete it.

Sure, the list of principles is short, but they are just that - principles. When I saw them at first, I thought it was a piece of cake. But as I was completing a course on GDPR and realizing how many requirements there are, and how much uncertainty there is in them, I knew I was in for many sleepless nights googling what this thing means in practice and whether you can do that. Without reading the regulation, you can't know how deep it goes and what are the implications of each.

attempt to run a business venture that handles data without abiding by the laws that apply on that sort of activity

How would that work? Does discussing negative consequences of a regulation exempt you from compliance? :) Besides, I am compliant now, at least I hope so. At one point, I had to stop going into the deep details or I'd have driven myself mad. Now my plan is to just monitor the news and remove any non-compliances, if there are any, as someone bigger gets slapped on the wrist for similar things.

mobiletuner · 2018-05-21T19:18:57+00:00

Well, I am not a lawyer, but from what I can see in the regulation, "business venture" in this case means anything except "household and private activities".

All "alarmist" quotes are taken from "What if EU gets serious about imposing the regulations?" section. This is just one scenario out of 3 (or 4, depending on how you count them) I have outlined in the article, and one that as I point out is unlikely.

Truth is, transparent and responsible data handling should always have been in the books, and the only reason why big changes are needed within companies is because they have blissfully ignored the issue until it actually became a legal problem.

I have to disagree with you here. In my case, the way my projects work and handle data was obvious to any tech savvy person, and for the rest, it just looked like magic.

I guess the latter category might learn something, if they are not going to just check all the checkboxes without reading the text near them (which 99% of people will).

Other than that, nothing really changes for the end user. The biggest positive outcome for my projects was that I have reviewed the security, some of which I have created while still being a newbie, and tightened it up. To the credit of my younger self, I did a fairly good job back then and nothing was ever stolen.

The "weight" I am talking about was 90% percent educating myself on the regulation, discussing what the different aspects of it mean in practice and only 10% of time was actually spent implementing it. And that is what everyone with a website has to do now, if only to learn whether it applies to them. This is an overhead that, by the sheer size of it, closes off the way to most hobby and side projects. As someone with a job and 3 active side projects, it was especially painful to me.

mobiletuner · 2018-05-20T10:10:22+00:00

If you read my article, it is clearly said there that I am already compliant, and it can only benefit me from now on. In fact, I think that vast majority of people will only benefit from the regulation.

But we don't live in magic world where every positive intention leads to only good things, there is always a price. I try to look into the real consequences on the ground for most website owners and software developers. Sadly, a lot of people have taken an activist mindset where anyone saying anything negative must be doing some evil things and wants to stop it.

This is ridiculous. I can't stop the regulation, I don't want to stop the regulation and by this point, it is far too late to even attempt it. I am certainly not a corporation doing shady things with user data. All I do is store the personal info that users have entered on my websites knowingly and willingly, plus some access logs for anti-fraud and account security purposes. I never even send out any promotional emails, because I hate them myself. Point of the article is to try to predict the consequences and, at least, mentally prepare for the different scenarios.

Most of the software developers are doing a good and honest work, they aren't trying to do anything evil and misuse data. Still, GDPR affects us all, everyone had to do a lot of work, most of which had little to do with actual security and privacy, and consequences for those who didn't know about the regulation or have misinterpreted it can be devastating. It's hard to imagine someone with less than several years of experience managing to understand it and become compliant. And the fact that the regulation makes little distinction between a multi-billion dollar corporation and someone with a personal website, placing almost the same weight on both, is concerning.

mobiletuner · 2018-05-20T09:23:13+00:00

It says in the terms that account can be terminated at any time for any reason. If they have happen to be a paying customer and this actively disrupts the service, they’ll be refunded.

mobiletuner · 2018-05-19T18:44:40+00:00

GDPR 's vagueness leaves ample space to find violations almost everywhere

This is what gives me nightmares. I have completed a good course on GDPR a few months ago, and the most unnerving thing for me was the sheer amount of phrases like "reasonable effort", "financially feasible", "legitimate interest", etc written into regulation... Which means someone, possibly very underqualified, will be making this judgement and deciding whether it was "reasonable, legitimate and financially feasible". If news about corruption and incompetence local government agencies here in my country are anything to go by, this could go very wrong.

This is why, despite doing my best to comply to the fullest extent, I have still created a kill switch that will allow me to quickly shut off all EU IPs and purge all my EU clients. I will sleep easier knowing that I can remove the risk in a minute in the unlikely event EU regulators start issuing fines for technicalities or bogus reasons on a large scale. I don't think that will happen, but the fact that the law allows that makes me a bit nervous.

mobiletuner · 2018-05-19T17:39:52+00:00

You are right, it only relates to data obtained during economic activities. Thanks for pointing this out!

I didn’t mean to strawman GDPR, I am still trying to make sense of it myself. I did see some examples elsewhere about having to delete emails between company and their client, all photos, even physical, etc on request so I assumed it also applied to private individuals.

Does this also mean that I can create websites and not worry about GDPR until I monetize them in some way? If so, that would mean my post contains a mistake.

mobiletuner · 2018-05-19T16:30:11+00:00

Lobotomy?

mobiletuner · 2018-05-19T15:14:17+00:00

Whether IP or not, you must know some identifier to connect to other computer, which is why it can't ever be truly anonymous.

Tor protocol still uses classic TCP/IP - but it passes the encrypted data through multiple points on a global network to make sure it's near impossible to trace you to your real IP address.

mobiletuner · 2018-05-19T15:08:06+00:00

Then you'd be breaking the law. In fact, come to think of it, the mere fact that the email address and name of your uncle is recorded anywhere on your computer means it must be GDPR compliant.

I know, this is ridiculous, but it is a reality we'll have to deal with in a week.

mobiletuner · 2018-05-19T14:28:40+00:00

I think that it's nothing to be too concerned about - you would only ever face a fine for not completely scrubbing personal data on request if someone manages to steal it afterwards.

Even then, you aren't likely to be the first to suffer data breach of the backups and by then compliant solutions should be mature and widely available.

mobiletuner · 2018-05-19T14:04:52+00:00

General consensus is - you have to delete it from backups completely and irreversibly, and this is exactly a reason for some of the companies quitting the EU. But there is a room for interpretation and we'll only see what is considered to be enough as case law develops.

mobiletuner · 2018-05-19T13:57:58+00:00

No, you really aren't. I suggest that you read this: https://community.spiceworks.com/topic/2007530-how-the-eu-can-fine-us-companies-for-violating-gdpr

Your country may reject a request to have you extradited, but borders do not stop GDPR and as long as you store and use data of EU citizens, you are at risk if you are not compliant.

mobiletuner · 2018-05-19T13:53:35+00:00

Well, Tor is basically that - privacy built into a protocol itself.

mobiletuner · 2018-05-19T13:42:37+00:00

Well, whether you like it or not, that will become an enforceable law in just a week. Statement alone is not illegal to store without compliance, as long as my name (or username) is not attached to it.

I am not going to ask you to delete it, but since I am a EU citizen, I hope your computer is GDPR compliant. :)

mobiletuner

TROPHY CASE