Comment by mmarq
3 years ago
> Lol. Thank you for agreeing. You're completely wrong about the fines part, it is discretionary. ie, if tomorrow, there is a negative press cycle, you will certainly be hit with any punishment of their choosing.
Not any punishment of their choosing, but according to Art. 83, that defines the maximum fine and the criteria to determine it.
This is not different from what the FDA or the SEC do in the USA. Or do you think they define exact fines for all possible misbehaviours up to the second decimal point regardless of mitigating factors or negligence?
> The incremental warning and fines approach has no practical or legal basis.
The legal basis is GDPR, which is a regulation of the EU. Do you mean that it goes against some EU treaties or rulings of the CJEU? Or the problem is that this notion upsets you somehow and you are telling me because you think I should do something about it?
> If it does, get it in writing from __ANY__ entity entrusted with enforcing the GDPR, you will be laughed out of the room. Europe is a clown show. Ambiguity rules.
I don’t understand what I should get in writing. Art. 83 of GDPR?
> Oh really? Read my comment again. These assholes in the executive are directly changing the letter of the law. ie LEGISLATING.
The Commission has the right of initiative, that is they propose laws that are approved by the Parliament. I’m not sure I understand what is upsetting you here.
Who are “these assholes in the executive” you are referring to? Are they the Commission or CNIL or both or none? I don’t live in France, but I’m sure the CNIL is not making new laws. If it worries you, I can ask around.
> We have laws for a fucking reason. Not to print them out and hang them on the walls like ornaments but so there is discipline in the exercise of power entrusted in people with the power of Government. We can't have personal vendettas run through governmental office.
Which is why the Council of State blocked the CNIL and also why you should not get so upset.
> Fancy. Should i be impressed? Does that disqualify all the abuse of power in your eyes?
I won’t indulge you further on this.
To sum it up, you don’t seem aware of how the EU makes laws but yet you know enough to be very agitated. You are especially upset with French bureaucrats, because some of them made some mistake and other French bureaucrats corrected them. For avoidance of doubt we’ll certify that you are very upset with both groups and that you think something should be done about it.
If you’re illiterate or deliberately avoiding the issues I’ve highlighted, then all the best to you and your kind.
We’ve established that there is presently different outcomes for the same actions under European law. Ie, if you send IP addresses today to AWS, you could be deemed to be doing something illegal overnight subject to 4% of global revenue or 20 million euro fines.
This isn’t about cents or decimals, jackass. You know very well this is about coverage.
Under the FDA or any US agency, you have an option to appeal to an independent branch of government whose decisions are binding. Here, we see the opposite take place in France. Lawlessness. Monarchy. Being run through the bureaucracy. You can’t even bring yourself to admit that the CNIL arrogantly brushed off effectively the SUPREME COURT OF ADMINISTRATIVE JUSTICE. You say it’s a “mistake”?? Are you fucking kidding me? Deliberately doing to opposite of what your oversight agency rules is abuse of power.
Can a European citizen simply ever say “yeah, fuck the GDPR, I know that’s a law, but I won’t follow it, doesn’t apply to me?” Of course not. So what gives the CNIL the power to ignore their responsibilities under French and European law?
Even after being blocked by the Council of state, they chose to target an individual company with the exact thing that they were instructed is legal and they should not be interfering with. Respect laws only when you like them?
Clear abuse of power, horrible precedent for democracies and rule of law everywhere and most European assholes connected to politics i speak to behave the way you do, try to brush it under the carpet? Anyone with half a brain will be aghast at what is happening is the EU and if you clowns think discourse that defends assholery from the bureaucracy wins you any favors or makes Europeans lives any better, you more stupid than I’m giving you credit for here.
> Ie, if you send IP addresses today to AWS, you could be deemed to be doing something illegal overnight subject to 4% of global revenue or 20 million euro fines.
If you are breaking the law, if a regulator finds out, you may be deemed to be doing something illegal overnight. Yes, that’s how everything works everywhere. What is worrying you now? The sound of a GDPR breach in a forest where nobody can hear it?
> Under the FDA or any US agency, you have an option to appeal to an independent branch of government whose decisions are binding.
Of course you can file an appeal, just use Google, you’ll find plenty, some successful and some not.
> Here, we see the opposite take place in France. Lawlessness. Monarchy. Being run through the bureaucracy. You can’t even bring yourself to admit that the CNIL arrogantly brushed off effectively the SUPREME COURT OF ADMINISTRATIVE JUSTICE. You say it’s a “mistake”?? Are you fucking kidding me? Deliberately doing to opposite of what your oversight agency rules is abuse of power.
You are getting fixated on a very minor case of French administrative law, that you didn’t even care to understand. The ICO made a minor mistake in considering all cookie walls illegal. The Council of State said that they can’t make a blanket ban, but that they should evaluate all cookie walls individually. No fine has been annulled and the ICO can still deem your cookie wall illegal. So still no monarchy for you.
> Anyone with half a brain will be aghast at what is happening is the EU
Anyone with a half brain will at least spend some time understanding the issue at hand before getting excessively agitated.
Either you don’t understand technology or you’re a dunce. You’ve made a strong case for both in this thread.
By admitting data flows to us resources are illegal, you’ve just said that what you’re doing right now can be construed as illegal activity on the part of the website you’re on. HN is indeed hosted on us resources. You touch Microsoft excel and guess what? Us resources get your personal data.
So you’ve just basically admitted that under GDPR, all regular internet activity is illegal if it touches a US server. Hence “coverage”. Hence, everyone living under really, the discretion of the monarchs.
Thanks for playing. Dumbass.
2 replies →
> If you’re illiterate or deliberately avoiding the issues I’ve highlighted, then all the best to you and your kind.
Perhaps if you were to actually highlight the issues you claim to have highlighted, it might be easier for us and our "kind" (I don't know what "kind" I belong to). You rant about the European "monarchy", and the deficiencies of European bureaucracy; what about explaining your proposals for a reformed GDPR?
But I think you are opposed to any kind of privacy legislation. GDPR steams you up because it is privacy legislation that works. Well, that's fine; there are laws that USAians make that I'm opposed to. I'm not on-board with US lawmaking and judicial processes. That's fine too; I don't have to live or trade in the USA (and I did make a choice; I once lived in the USA).
I suspect that something about the GDPR must have bitten you quite badly - would you consider sharing what it was? It would be helpful if you avoided the "asshole", "weasel", "moron", "dumbass", "illiterate" language, and focused on what happened, and what the impact was.
NOTE: there are people here that don't seem to be good at spelling, but I don't think I've ever come across a post here that I would describe as "illiterate".
I seem to have touched a nerve lol. Here's my reform proposal for the GDPR:
1. Toss it out. All of it. In the present form, it is worthless. 2. Make privacy regulation simpler, not ten million pages and bureaucrats who are RIGHT NOW, abusing the power that all Europeans have entrusted them with. 3. Enable independent oversight. Consultations with technical committees of technology companies, Judicial reform to ensure there is no legislating from the bench, independent whistleblower handling to investigate abuses of power such as the CNIL case. 4. Separate the legislative, executive and punitive functions with very tight rules. We have assholes in Brussels so married to the idea that all tech is bad that they rebelled against the moves by the European Parliament to codify data transfer laws between the EU and US during Bidens visit. I mean, there is a limit to short sighted thinking. 5. Stop the political uncertainty with the multiple changes and the sheer amount of idiotic bureaucracy with multiple conflicting regulations where EVERY SINGLE FUCKING THING is a crime and instead, pick the most pressing issues: Cybersecurity, Data Handling, Data Sharing etc. It's ridiculous that we have 10,000 people obsessing over cookie banners while malicious hackers pilfer 100s of millions of peoples data because of a lack of political will to focus on cybersecurity.
On privacy legislation, my biggest gripe with the GDPR is it HAS DONE FUCK ALL for privacy. Apple has done more with the changes to iOS than the entire fucking EU with GDPR.
I am advocating for MORE effective legislation, not more INEFFECTIVE, burdensome, regressive regulation that enshrines the concentration of powers and makes innovation impossible.
1. Enlarge the definition of privacy legislation to cover EVERYTHING! Do you realize that EUROPEAN Intel agencies are not covered by the GDPR right now? While American Intel agencies are and Chinese Intel agencies are not even mentioned or challenged? How is that good for privacy when Huawei is essentially taking much of European market share while being run by a Govt enslaving a million Muslims in Xinjiang? 2. Make it less reliant on pure punitive measures and more an incentive+punitive set of objective measures to give companies the opportunity to innovate towards solutions. Right now, the stance by Europe has made only investing in lawyers the most appropriate choice. That or leave. No middle ground, no consultations, simply make villains of tech companies and that is the legacy of many regulators there. 3. Term limits on regulators. Limits and regulation on the people enforcing privacy legislation to ensure a balanced mind. Right now, go on Twitter and see the deranged rants of many of the people in these agencies who delight at the market share loss of Facebook or openly express glee whenever there is a bad press cycle outside of privacy for any of the companies they're supposed to be entrusted with passing judgements on. This is not a democracy. It's shameful. 4. Incentives that MINIMIZE liability for companies that meet objective standards that are reasonable. Right now, the approach is to hit them with the biggest stick you can find and hope and pray that it works out.
Many more, but along the same lines.
>I suspect that something about the GDPR must have bitten you quite badly
I've seen people simply struggle to achieve success that other parts of the world take for granted. This is TODAY . . in EUROPE of all places. You need to realize that bad political decisions are bad for everyone. I don't have skin in the game other than the feeling of watching someone drive off a cliff. So many people i speak to/interview/engage with from Europe who are young as SO very bright and talented and it's amazing to see how the very people they elected piss away time, resources and money on depleting the economy that these kids are going to grow up into for personal vendetta.
No one in their right mind will argue that the GDPR does a great job. It is very flawed legislation that will set the privacy movement back decades.
> Monarchy.
You don't seem to know what a monarch is. You're ranting about a French regulator; you don't seem to be aware that the French got rid of their monarchy before the American colonies did.
> if you clowns think discourse that defends assholery from the bureaucracy wins you any favors or makes Europeans lives any better, you more stupid than I’m giving you credit for here.
The value of your "credit" diminishes with each post you make. Apparently your view is that "Anyone with half a brain will be aghast at what is happening is the EU"; well, either Europeans are, in fact, aghast, or you're really referring to your own "countrymen", which I suspect is a rather small clique of USAian tech bros.
Have a chill-pill, dude. GDPR is European law, for Europeans. You don't have to come to Europe, and you don't have to trade here. If you stick to jurisdictions that don't, in your view, involve assholery, then everything's copacetic for everyone, right?
I have a strong sense that you want to trade in Europe, without having to comply with European law. That's not going to work.