@staff, and its parent company, which seems to be Verizon now, sure has a weird way of interpreting the European GDPR-regulations. You are supposed to ask me to ‘opt-in’ to give my data to your partners. Telling me I have to untick 323 boxes (YES I COUNTED) one-by-one if I don’t want any of my data shared, is NOT GDPR-compliant. Oh boy do I hope either Belgian or Irish Data Protection Agencies come and bite you in the ass for this, and not in the hot smutty way.
Also, fuck you for having given my data to 323 “partners” in the first place.
Recital 32:
Consent should be given by a clear affirmative act establishing a freely given,
specific, informed and unambiguous indication of the data subject’s agreement
to the processing of personal data relating to him or her, such as by a written
statement, including by electronic means, or an oral statement. This could
include ticking a box when visiting an internet website, choosing technical
settings for information society services or another statement or conduct which
clearly indicates in this context the data subject’s acceptance of the proposed
processing of his or her personal data. Silence, pre-ticked boxes or inactivity
should not therefore constitute consent. Consent should cover all processing
activities carried out for the same purpose or purposes. When the processing
has multiple purposes, consent should be given for all of them. If the data
subject’s consent is to be given following a request by electronic means, the
request must be clear, concise and not unnecessarily disruptive to the use of
the service for which it is provided.So if I understand correctly, if someone didn’t bother unticking the 323 boxes and tumblr still sold their data to their “partners”, that’s a direct and obvious violation of GDPR and we should report them, right?
Published
rip tumblr 