this post was submitted on 24 Feb 2024
143 points (100.0% liked)

World News

22058 readers
53 users here now

Breaking news from around the world.

News that is American but has an international facet may also be posted here.


Guidelines for submissions:

These guidelines will be enforced on a know-it-when-I-see-it basis.


For US News, see the US News community.


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
 

From the "no matter how bad you think it is, it's worse" department.

you are viewing a single comment's thread
view the rest of the comments
[–] Gork@lemm.ee 22 points 8 months ago (2 children)

According to Adaria and Invenda, students shouldn't worry about data privacy because the vending machines are "fully compliant" with the world's toughest data privacy law, the European Union's General Data Protection Regulation (GDPR).

Then they should have no issues releasing the source code for independent public audit, right?

[–] Banzai51@midwest.social 12 points 8 months ago

If they are compliant, that means students can demand their data to be removed?

[–] intrepid@lemmy.ca 5 points 8 months ago* (last edited 8 months ago) (2 children)

How does GDPR mandate a public audit of the code base? Is there such a provision in it? (Not a confrontational question)

[–] MentalEdge@sopuli.xyz 16 points 8 months ago

They're just saying that if they have nothing to hide, they should prove it. Not that GDPR requires an audit.

[–] jarfil@beehaw.org 3 points 8 months ago

It doesn't. You can check the full text at:

https://eur-lex.europa.eu/eli/reg/2016/679/oj

The only references to audits, are that supervisors can require an audit, processors need to allow audits by controllers, DPOs need to prepare for audits, and corporations or groups of enterprises need to have audit procedures in place.

It doesn't say anything about what kind of audits these need to be, other than to ensure compliance with the law.