The Lounge is rated Safe For Work. If you're about to post something inappropriate for a shared office environment, then don't post it. No ads, no abuse, and no programming questions. Trolling, (political, climate, religious or whatever) will result in your account being removed.
What ever you do, don't offer a New Zealander a hug. I have met two or three who were offended at being asked if they were Australian. Something like this would certainly send them right over the edge. I think they were a two cent stamp short of going postal already though.
If another forum better then the lounge for this, let me know.
What are the GDPR rules for my Lightbulb indication software?
So given I have a bunch of lightbulbs that will connect over the internet to a web server, which you can log into in a brower to see gathered on/off states of your lightbulbs.
now in the server side of things, you can mark up the lightbulbs as much as you want. Meaning you can put in say lightbulb 1365 is in Room: Billys Room, at 14 Acre Road, London.
The sensor only transmit out its ID and state of on/off. It has no location information.
So the discussion, in my view, is left to the user to put in what every details they want.
What obligations do I need to get consent from to indicate that the service provide (me) needs to get?
A side from clear sign up indication like: The details you choose to enter are totatly up to you. All sensor data is clear of GEO Location or specific details. Details entered only stored on service side, and used on your report pages.
Not even understood the cookie thing, because to remove the message that you don't want cookie tracking, you would keep that information in a cookie so you dont prompt the user constantly.
I'm not a lawyer, but I seriously doubt the GDPR regulations would extend to users typing PII into random text boxes. You're not asking for their personal details; I'd hope you can't be held responsible if your users go out of their way to give you their details anyway.
"I posted my wallet through your letterbox; now I'm going to sue you for stealing my wallet, because it's in your house!"
Of course, like all similar laws (including the "cookie law"), I'm sure it will make lots of pointless work for SMEs, whilst doing bollock-all to stop the kinds of abuses that users actually care about.
And I must be getting old, because I find the whole concept of IoT light-bulbs ludicrous!
"These people looked deep within my soul and assigned me a number based on the order in which I joined." - Homer
Who wrote that document? It's so clear that I am amazed -- did not expect that.
Also, before I read that I thought GDPR was more stupid legislation that would mostly stifle innovation.
However, that document really makes things clear that it is about stopping people from collecting data from you without your consent and making it far more clear when they do collect data from you.
Thanks for posting that. Very good.
That all sounds eminently sensible for me, and a long overdue rebalance of rights in favour of the consumer. The recent Cambridge Analytica/Facebook fiasco should be sufficient evidence of the need for this.
"If you don't fail at least 90 percent of the time, you're not aiming high enough."
It is all common sense. Except it's hard. It's like they want to make a car 100% safe and have zero fatalities, but they also want a car that people actually enjoy driving and more important, want to buy.
Take backups as an example. Backups contain Personally Identifiable Info (PII). If someone requests to be forgotten then they need to be purged everywhere. EVERYWHERE. Except who is going to go and screw around with their backups to purge data from backups? You'd want to make a backup before such a dangerous operation, right?
It's also a little vague. It talks about a Data Subject not EU citizen, and the consensus is that this means anyone in the EU. So an Australian on holidays to the EU has the rights the GDPR instills simply by being in the EU. However, how do you prove someone's actually in the EU when they make a right to be forgotten request? What if they access the internet via a VPN or Proxy that's based in the States? Essentially you have assume the GDPR applies to everyone on the planet.
Given that there are about 100 of these types of regulations around it's become the case that you have to cater to the lowest common denominater. The burden on companies who are honestly trying to do the right thing and are barely making it through their day dealing with their actual business is overwhelming. They basically live with the Sword of Damocles hanging over them.
In the community lounge, under the Non-English Language sub-section I am seeing only two Sub-topics Indian and Chinese, do other Country or Continent users see different topics than me being Indian? Why don't we have sub-topics for other Countries too? Just checking
"There is already enough hatred in the world lets spread love, compassion and affection."