[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]
On Wednesday, 24 February 2021 11:32:42 GMT Brad Rogers wrote: > On Wed, 24 Feb 2021 11:03:40 +0000 > Mark Andrew Smith via list <list@xxxxxxxxxxxxx> wrote: > > Hello Mark, > > >https://cloud.google.com/security/gdpr > > That applies only in the EU. As there is no mention of Britain, United > Kingdom, England, Scotland, Northern Ireland or Wales, there's no > guarantee that the legislation will apply here. GDPR is incorporated into UK law via the Data Protection Act 2018, which is still in effect. Google won't deliberately do anything which compromises EU citizen or UK subject data they are a processor for, as it would be commercial suicide, both in terms of European customer flight, but also fines. They don't want to be in court discussing the finer points of privacy legislation with the ICO when 4% of their global revenue at risk if the judges disagree with them. That is not to say people who are controllers for such data shouldn't be keeping a close eye on things, but I suspect that more practical privacy and security benefits would stem from reading their current audits, and certifications, than worries over machinations of privacy law. -- The Mailing List for the Devon & Cornwall LUG https://mailman.dcglug.org.uk/listinfo/list FAQ: http://www.dcglug.org.uk/listfaq