Slashdot Mirror

← Back to Stories (view on slashdot.org)

Facebook CEO Says Not Planning To Extend European Privacy Law Globally (reuters.com)

Posted by BeauHD on from the strictly-speaking dept.

Facebook CEO Mark Zuckerberg said on Tuesday that the social network had no immediate plans to apply a strict new European Union law on data privacy in its entirety to the rest of the world. The news comes as Facebook reels from a scandal over its handling of personal information of millions of its users. Reuters reports: Zuckerberg told Reuters in a phone interview that Facebook already complies with many parts of the law ahead of its implementation in May. He said the company wanted to extend privacy guarantees worldwide in spirit, but would make exceptions, which he declined to describe. His comments signals that U.S. Facebook users, many of them still angry over the company's handling of personal information, may soon find themselves in a worse position than Europeans. The European law, called the General Data Protection Regulation (GDPR), is the biggest overhaul of online privacy since the birth of the internet, giving Europeans the right to know what data is stored on them and the right to have it deleted. Asked what parts of the EU law he would not extend worldwide, Zuckerberg said: "We're still nailing down details on this, but it should directionally be, in spirit, the whole thing." He did not elaborate.

84 comments

  1. Zuck my dick by PopeRatzo · · Score: 4, Insightful

    Facebook must die.

    --
    You are welcome on my lawn.
    1. Re:Zuck my dick by hcs_$reboot · · Score: 1

      so many people injected so much stuff into FB, I don't see it dying any time soon (that's only a geeks dream)

      --
      Slashdot, fix the reply notifications... You won't get away with it...
    2. Re:Zuck my dick by Anonymous Coward · · Score: 2, Insightful

      Facebook must die.

      Self regulation must die as an economic doctrine.
      Regulate the fuck out of these monsters. +1000 for the Europeans. Lets see the Orangutan and his court do something useful for the american people for once.

    3. Re: Zuck my dick by Anonymous Coward · · Score: 0

      Hahahaha. Why would they, you elected them.

    4. Re:Zuck my dick by Anonymous Coward · · Score: 0

      This generation is lost but that doesn't mean we can't try and prevent the next one from making the same mistakes...

    5. Re:Zuck my dick by hcs_$reboot · · Score: 1

      Maybe but that wouldn't be "soon".

      --
      Slashdot, fix the reply notifications... You won't get away with it...
    6. Re:Zuck my dick by ElitistWhiner · · Score: 1

      " Swedes Turn Against Cashlessness" on Slashdot today is posted what its like to woke to a Society where choice has been lost to private enterprise.

      May the Swedes show us the way back to Reason, Choice and Community where rights live free.

       

  2. Countries should extend the law by Anonymous Coward · · Score: 0

    Not companies based on their goodwill (ie. PR
    ) motivations...

  3. Of course by uvajed_ekil · · Score: 5, Insightful

    "Facebook CEO Says Not Planning To Extend European Privacy Law Globally"
    Business as usual. Zuckerberg likes to come out and talk about how FB cares and wants the best for humanity, but in reality they consistently put the company's survival first and do the bare minimum for the rest of us. That's how huge companies become huge companies and stay in business, so this shouldn't come as a shock.

    Zuckerberg seems like a decent enough chap but he's out of his depth running such a big, pervasive company, and he doesn't even realize it. Hard to fault him, but hard to trust him.

    --
    This is a hacked account, for which the owner can not be held responsible.
    1. Re:Of course by Anonymous Coward · · Score: 0

      Modus operandi of stalkers: Zuckerberg seems like a decent enough chap

    2. Re:Of course by 93+Escort+Wagon · · Score: 1

      Hard to fault him

      Why? He's earned billions of dollars specifically because of what Facebook is.

      --
      #DeleteChrome
    3. Re:Of course by Anonymous Coward · · Score: 0

      Zuckerberg seems like a decent enough chap ...

      You are an exceedingly poor judge of character.

      Zuckerberg is a sociopath and an asshole.

    4. Re:Of course by Arzaboa · · Score: 1

      Hard to fault him? He's a 51% owner, CEO and founder of Facebook. What are you talking about?

      --
      "Whats up doc?" -- B. Bunny

    5. Re:Of course by Anonymous Coward · · Score: 0

      Surely all any user has to do is put their FB profile location as an EU nation and they're covered?

    6. Re: Of course by Anonymous Coward · · Score: 0

      Typo in your sig, should be - âoeWhatâ(TM)s up doc?â

    7. Re:Of course by Anonymous Coward · · Score: 2, Interesting

      All such companies are built on a model where they make money by inserting themselves in a system and positioning as the broker bringing value to two entities: the end user (facebook social media as we know it), and their customers (advertisement agencies). There is no "decent chap" altruism here IMHO except may be the usual billionaire wants to get remembered for the good he did. Nothing wrong, but nothing new. If Facebook can avoid the Privacy Laws it will. Because it hurts its bottom-line. Not for any other reason. And so does any other company. Atruistic messages such as "Do no evil" are marketing slogans wanting to reflect a moral facade that gets tossed when interest is in play.

    8. Re:Of course by Anonymous Coward · · Score: 1

      "Business as usual. Zuckerberg likes to come out and talk about how FB cares and wants the best for humanity,"

      He means "lizard people", not "humanity".

    9. Re: Of course by Anonymous Coward · · Score: 0

      A decent enough chap? You must not have saw the leaked documents from the beginning of Facebook (a few months in) that show he literally said people are idiots to trust him with their data.

    10. Re:Of course by PolygamousRanchKid+ · · Score: 1

      He's a 51% owner

      No, don't you remember? He told everyone that he was donating his Facebook stock to charity.

      --
      Schroedinger's Brexit: The UK is both in and out of the EU at the same time!
    11. Re:Of course by Hognoxious · · Score: 2

      Translation: We'll get away with as much as we can, wherever we can

      --
      Confucius say, "Find worm in apple - bad. Find half a worm - worse."
    12. Re:Of course by Opportunist · · Score: 1

      So he's now a tax cheat, too?

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    13. Re: Of course by DigiShaman · · Score: 1

      He's not. Zuck is a hypocritical little shit. He's actually doing something Trump hasn't been able to - building his own wall

      --
      Life is not for the lazy.
  4. No shit Sherlock by rsilvergun · · Score: 4, Insightful

    if you want these kinds of protections in the States you're gonna have to start voting people in who believe in government regulation. As it stands the party in charge of our 3 branches of government has opposing government regulation as a central plank of it's party platform.

    That said, a lot of folks don't care for the regulations; since after all they either don't use Facebook or feel confident they can control their data themselves. e.g. let the free market sort it out.

    --
    Hi! I make Firefox Plug-ins. Check 'em out @ https://addons.mozilla.org/en-US/firefox/addon/youtube-mp3-podcaster/
    1. Re:No shit Sherlock by Anonymous Coward · · Score: 0

      With the millions that have left Facebook lately, how can you claim that the free market isn't sorting this out?

    2. Re:No shit Sherlock by viperidaenz · · Score: 1

      The billions that are still using Facebook.

    3. Re:No shit Sherlock by Bing+Tsher+E · · Score: 1

      The remainers form a demographic, though.

      It probably is enough that it's being noticed.

    4. Re: No shit Sherlock by Anonymous Coward · · Score: 0

      Both parties love Regulation, they just disagree on some of what should be regulated.
      For example the Liberals are big fans of regulating tobacco, the GOP want to regulate pot.

      Europe means well but they're idiots on this issue. OJ Simpson shouldn't get to force the removal of his name from the internet. Trump shouldn't be able to force people to delete all his shitbrained Tweets. The EU law would allow both to do exactly that.

    5. Re:No shit Sherlock by Anonymous Coward · · Score: 0

      Has nothing to do with "the party in charge". _All_ of them voated and extended spying laws. Aka Cloud Act, FOSTA/SESTA, etc. The entire Government should be brought down for it.

      Looking over the stories posted to Slashdot this year alone (which is a small sample), is quite astounding.

    6. Re: No shit Sherlock by Anonymous Coward · · Score: 0

      RTFGDPRM before you go full retard

    7. Re: No shit Sherlock by Anonymous Coward · · Score: 0

      Is it noticed? By whom, the Slashdot nerd community?

    8. Re:No shit Sherlock by Anonymous Coward · · Score: 0

      if you want these kinds of protections in the States you're gonna have to start voting people in who believe in government regulation. As it stands the party in charge of our 3 branches of government has opposing government regulation as a central plank of it's party platform.

      Ironically they abhor the concept of regulation unless it involves your social life, then they love regulation. Conservatives would have a little more credibility if they didn't suddenly flip from anti-regulation to super pro-regulation when it comes to drugs/sexual preference/abortion etc...

    9. Re:No shit Sherlock by Anonymous Coward · · Score: 0

      Or you can just.

      Not.
      Use.
      It.

  5. Privacy by sit1963nz · · Score: 2

    Privacy is an anathema to Facebook. The whole reason for facebook to exist is to gather as much information about everyone they can and sell that information to whom ever is willing to pay for it.

    He may have lost ground in the EU, but he will be doubling down on the rest of the world, and raking as much as he can off the top personally.
    Facebook will eventually die but Zuc will still be a very wealthy man.

  6. Hidden meaning by Anonymous Coward · · Score: 0

    "... be, in spirit, the whole thing."

    Except the data that makes money, he means. This lack of commitment is the biggest admission that Facebook doesn't want subscribers to have privacy. They've been doing this for a decade, why are people still surprised?

  7. Does Zuckenfuck still want to run for President? by Anonymous Coward · · Score: 0

    > Facebook CEO Mark Zuckerberg said on Tuesday that the social network had no immediate plans to apply a strict new European Union law on data privacy in its entirety to the rest of the world.

    Wow. Learned nothing. I really hate this guy.

  8. Re:Does Zuckenfuck still want to run for President by Bing+Tsher+E · · Score: 1

    Is there a place-of-birth requirement that prevents him from running for President in the People's Republic of China? I'm sure he can manage a Party membership without needing to brush up for the test.

  9. Multinationals Only Ones With Your Data by glennrrr · · Score: 3

    After taking my corporate training on the European privacy law, I can say that only multinationals will have the legal departments and resources able to so much as keep a copy of their user's email addresses. I am concerned that I'm going to have to suspend email support for my side apps. I really really can't pay a 10M Euro fine for the $100 a year I make in app sales to Europe. I don't have a dedicated privacy officer; there's only me writing apps. My apps don't even collect any data, but I do give out my email address so people do write me. If that's what you want. Only large multinationals able to make software that keeps track of a user's private data; that's what you are getting in Europe.

    1. Re:Multinationals Only Ones With Your Data by Anonymous Coward · · Score: 4, Informative

      EU authorities are not interested in imposing large fines for single developers or even SMEs unless you're doing something really large scale or incredibly stupid. Those big fines are intended for the Facebooks and the Equifaxes of the world given the large scope of data that they collect and the harm that may be caused as a result of their (mal)practices.

      It'd be worth learning directly from the regulators themselves on what they're looking for from small businesses:
      http://ec.europa.eu/justice/smedataprotect/index_en.htm

    2. Re:Multinationals Only Ones With Your Data by Anonymous Coward · · Score: 0

      If you really studied the new law you would know that you can't get a 10M euro fine if you make only 100 dollars. The maximum fine is a percentage of sales.

      But by all means, do withdraw from the European market, I'm sure others will fill the gap. You see, I am more worried about my privacy (hence the AC posting) than the reactions of Americans.

    3. Re:Multinationals Only Ones With Your Data by Jahta · · Score: 2

      After taking my corporate training on the European privacy law, I can say that only multinationals will have the legal departments and resources able to so much as keep a copy of their user's email addresses. I am concerned that I'm going to have to suspend email support for my side apps. I really really can't pay a 10M Euro fine for the $100 a year I make in app sales to Europe. I don't have a dedicated privacy officer; there's only me writing apps. My apps don't even collect any data, but I do give out my email address so people do write me. If that's what you want. Only large multinationals able to make software that keeps track of a user's private data; that's what you are getting in Europe.

      The maximum fine under GDPR is 4% of annual turnover; so in the unlikely event that that you were ever prosecuted your fine would be $25 (based on your $100 business). If you are simply replying to user emails, GDPR is unlikely to impact you at all. Even if you are maintaining a register of your customers, GDPR in essence just means (a) only holding personal data that is absolutely required for the business relationship, (b) ensuring your customers know what data you are holding and consent to it, (c) keeping the data secure (and reporting any security breaches), and (d) deleting the data if they stop being customers.

    4. Re:Multinationals Only Ones With Your Data by Anonymous Coward · · Score: 0

      EU authorities are not interested in imposing large fines for single developers or even SMEs unless you're doing something really large scale or incredibly stupid. Those big fines are intended for the Facebooks and the Equifaxes of the world given the large scope of data that they collect and the harm that may be caused as a result of their (mal)practices.

      Yeah, doesn't suprise me at all - draconian laws which the government "promises" they won't use against "the little guys" are a staple of every fascist dictatorship, EUSSR included. Yes, little drone, we promise won't come after you, unless of course you happen to tread on the toes of your betters, then prepare to be obliterated, fully legally.

    5. Re:Multinationals Only Ones With Your Data by Xest · · Score: 3, Interesting

      "After taking my corporate training on the European privacy law"

      Oh dear, it sounds awfully like your employer bought the services of one of those parasite companies that has been fear mongering over GDPR in their training sessions so that they can sell you their other services to help you be GDPR compliant.

      I had the misfortune of trying to find out what our obligations were in a few areas under GDPR, I read various articles online all contradicting each other, then I went and just read the legislation. Turns out my obligations are minimal compared to what the shit peddlers are trying to flog with their fear mongering.

      If you're not collecting any PII you don't need a dedicated privacy officer. If people send you personal info all you have to do is make sure you delete it after an appropriate amount of time (which most major mail clients support), store it securely, such as in an encrypted mail store (which most major mail clients support), provide people the data you have on them whilst being able to charge them for the privilege and can be as simple as forwarding their e-mails with PII in right back at them whilst making a profit on the effort, and being able to tell people their data has been stolen if you are hacked, which is just a case of loading up your mailbox backup after the fact and bulk mailing everyone in your PII folder to let them know.

      This is hardly a burden, this isn't far removed from how the vast majority of people manage their e-mail day to day anyway.

      If you're only making $100 a year in Europe it doesn't sound like you actually have a European presence anyway, so if it's that much of a burden it's hardly a loss anyway, so I don't really see the problem. The cost of complying with GDPR for small businesses is clearly negligible though either way beyond the negligible time cost of setting up a few filters and automatic backup in Outlook or whatever - again, something any sane business owner is likely to be doing anyway.

    6. Re:Multinationals Only Ones With Your Data by Opportunist · · Score: 1

      Lemme guess, your boss bought some snakeoil peddler's spin who wanted to sell you a lot of "courses" and "consulting"?

      Most EU laws by default contain clauses and provisions for commensurability. Which basically means that what you have to do is proportional to what you want to do. The privacy concerns and security required to store a few mail addresses of people who explicitly handed you their mail address so you can contact them is trivial.

      It's a considerably different matter when you store everything about people and all their friends and connections.

      Judges in Europe have a LOT of leeway when it comes to interpreting the law. And they generally do it with some sanity.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    7. Re:Multinationals Only Ones With Your Data by Anonymous Coward · · Score: 0

      After taking my corporate training on the European privacy law, I can say that only multinationals will have the legal departments and resources able to so much as keep a copy of their user's email addresses.

      If you really believe that - good for us Europeans then. We have no problems running companies large & small - keeping email addresses and whatnot.

      Basically, our laws do not get in the way of keeping the information you need for billing or communicating with customers. You may collect much more information than that - but in some cases you will need a permit to do so. (Example: You may have video surveillance in your shop - but then you need a trivial permit and to put up some warning signs.)

      The things you can't do with such data, is selling them or using them in certain ways. So yes - less 'monetization' of what you know about your customers. The data you collect is mostly 'confidential' unless you have a permit for other uses. You can still sell stuff to your customers though.

      Break a privacy law, and there may be fines. And loss of permits you may have. . .

    8. Re:Multinationals Only Ones With Your Data by Anonymous Coward · · Score: 0

      Wrong. The maximum fine is 4% of turnover, or 20 million Euros, whichever is GREATER.

    9. Re: Multinationals Only Ones With Your Data by madsh · · Score: 0

      Do you have more than 200 employees?

    10. Re:Multinationals Only Ones With Your Data by Anonymous Coward · · Score: 0

      Corporate data privacy/protection attorney here. It's 4% GLOBAL annual turnover or a flat amount, whichever is larger. You don't need a dedicated privacy officer in some circumstances.

      You covered the general thrust of GDPR, but two other important things to note are that it absolutely requires (a) documentation of processing activities and (b) agreements with data controllers (e.g., your customer) and processors (e.g., your cloud services provider) which require compliance with GDPR requirements as they are applicable to that party (and by extension you should obligate them to do whatever is necessary to help YOU comply with the requirements applicable to you).

    11. Re:Multinationals Only Ones With Your Data by glennrrr · · Score: 1

      And the whatever is larger is 10 million Euros. Please imagine being a sole proprietor faced with doing business in an environment where a single mistake would lead to a 10 million Euro fine. Oh, I get to rely on the well known compassion of bureaucrats.

    12. Re: Multinationals Only Ones With Your Data by glennrrr · · Score: 1

      OK this was not part of my training, but this apparently is what you mean.

      GDPR will also apply to small businesses under 250 employees if the processing carried out is likely to result in a risk to the rights and freedoms of data subjects, the processing is not occasional, or the processing includes special categories of data as defined in GDPR Article 9.

      So, I have no idea based on that (which I guess is technically in English) what constitutes a small business exception. I'd have to hire a specialist to know.

    13. Re:Multinationals Only Ones With Your Data by Jahta · · Score: 1

      And the whatever is larger is 10 million Euros. Please imagine being a sole proprietor faced with doing business in an environment where a single mistake would lead to a 10 million Euro fine. Oh, I get to rely on the well known compassion of bureaucrats.

      The actual legislation on the fines and penalties says _up to_ 10 million (or 2% of turnover if greater than 10 million) for a lower level infringement, and _up to_ 20 million euro (or 4% of turnover if greater than 20 million) for a higher level infringement.

      The key phrase is "up to"; "up to" 10 million can be $50, $100, $500, or $1000. There are 10 specific criteria for assessing seriousness of the breach and the appropriate the size of the fine, including the type of data exposed, the number of people affected,and whether the breach was deliberate or due to negligence. So it is is simply not true to say that fines start at 10 million euro; the aim is to make the penalties stiff enough to make people take data security and privacy seriously, not put them out of business (unless they become a serious serial offender).

    14. Re:Multinationals Only Ones With Your Data by dave420 · · Score: 1

      Either the EU has decided to kill each and every non-multinational corporation/entity which handles data, or you misunderstood something. My money's on the latter.

    15. Re: Multinationals Only Ones With Your Data by dave420 · · Score: 1

      Or just read the regulations - they're not difficult.

    16. Re:Multinationals Only Ones With Your Data by Anonymous Coward · · Score: 0

      > http://ec.europa.eu/justice/sm...

      What a visual clusterfuck of a web page.

      It's a shame that you get a +4 but omit something much more informative than your link, the LAST LINE of that CF'd page:

      This document should not be considered as representative of the Commission's official position and does not replace the legislation.

      Seriously, WTF is "ec.europa.eu" and why is it impossible to get legalese in plain, definitive language (here or there). That last line says, "for legal purposes, completely disregard this page and its guidance as we - the commision - will do likewise."

      Maybe ALL force-based government ought to fix that before further meddling in non-force based entities.

    17. Re:Multinationals Only Ones With Your Data by Anonymous Coward · · Score: 0

      But European privacy law is easy: ask for explicit consent to use personal data for a specific purpose, and do only what has been agreed to.

  10. No Choice by Anonymous Coward · · Score: 0

    What this really implies to me is that given the choice, FB isn't really interested in giving its users a choice...

  11. Why, oh why... by Anonymous Coward · · Score: 0

    do people insist on being USED again and again and again by these companies that have ZERO respect for privacy? I simply don't understand the *need* to use any social media. I have been told again and again that I need social media to find a job. I never have and I never will. Social media is not a need, it's a want. No employer will ever mandate the need to have social media as a requirement for hire.

  12. Questionably European Shadow Profiles? by Anonymous Coward · · Score: 0

    If the policy is not universal, how will facebook know if their shadow profile of me is covered? I have multiple phone numbers: some in Europe, some in North America, some in Asia. Assuming most of my friends have synched their contacts with facebook, they know my email address and a half-dozen phone numbers for me. How would facebook know whether I have a privacy-enhanced shadow account or not, unless I explicitly agree to set up a real account?

    1. Re: Questionably European Shadow Profiles? by Anonymous Coward · · Score: 1

      You can always request that they delete any data they have on you, as long as you can prove that you own your information.

    2. Re:Questionably European Shadow Profiles? by Opportunist · · Score: 1

      Would be interesting to try. Tell them to delete everything they have from you without disclosing what is "you", then sue when they don't find all your phone numbers and mail addresses.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
  13. False dichotomy by rsilvergun · · Score: 1, Interesting

    if the law's broke the solution isn't to say to devil with regulations and let everyone have as much info on you as they can claw out before you die. The solution is to fix the law. It's not that hard to carve out an exception for sending emails back and forth. You're giving up way, way too easy in that regard.

    Also I take the same kind of training every year too. Yours is way off base. Yes, people can email you. Now, what you _can't_ do is use those emails for a purpose other than the one you told people you gathered them for. And even in the States you'll get hit with CAN-SPAM if you try that sort of nonsense.

    --
    Hi! I make Firefox Plug-ins. Check 'em out @ https://addons.mozilla.org/en-US/firefox/addon/youtube-mp3-podcaster/
  14. "complies with many parts of the law" by Anonymous Coward · · Score: 0

    Holy smoke. This sense of entitlement:

    "Facebook already complies with many parts of the law..."

    "Your Honor, we surely comply with most laws. We just want to choose which ones we comply with".

    Who does this dick think he is?

    1. Re:"complies with many parts of the law" by Opportunist · · Score: 2

      Try that as your defense.

      "Your honor, I did comply with many parts of the law. I did not kill, maim, threaten or cause other bodily harm to the absent couple when I broke into their home".

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
  15. Good luck with that Zuck... by Anonymous Coward · · Score: 2, Interesting

    GDPR effectively applies to the whole world, unless a company decides they do not want to operate in the EU. For Facebook, not operating in the EU would probably mean blocking all EU IP addresses (and probably email addresses by domain as well) and warning all new users that they are not allowed to use FB from the EU. Thatâ(TM)s not going to happen, so FB will need to comply.

    If a US citizen is traveling in the EU for 10 days or more, GDPR applies. There are a number of other cases like this where it becomes impractical to try to treat EU and non-EU users differently.

    There are many different ways a company can end up in violation of GDPR. Penalties are 4% of annual global turnover or â20 Million which ever is greater. For FB, Iâ(TM)m pretty sure it would be the 4%. Ouch!

    The fact that Zuck is making statements like this now means that he is either stupid and didnâ(TM)t talk to his legal team first or more likely FB has been ignoring this issue and will be caught with their pants down shortly.

    There is no excuse for FB being so clueless about GDPR this late in the game. The rest of the industry has been frantically prepairing for many months.

    1. Re:Good luck with that Zuck... by Opportunist · · Score: 2

      It's simple hubris. I got away with it in the past, why worry about it in the future?

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    2. Re:Good luck with that Zuck... by pnutjam · · Score: 1
      Your spreading incorrect FUD:
      https://www.eugdpr.org/gdpr-fa...

      What are the penalties for non-compliance? Organizations can be fined up to 4% of annual global turnover for breaching GDPR or €20 Million. This is the maximum fine that can be imposed for the most serious infringements e.g.not having sufficient customer consent to process data or violating the core of Privacy by Design concepts. There is a tiered approach to fines e.g. a company can be fined 2% for not having their records in order (article 28), not notifying the supervising authority and data subject about a breach or not conducting impact assessment. It is important to note that these rules apply to both controllers and processors -- meaning 'clouds' will not be exempt from GDPR enforcement

      --
      Cheap storage VM.
  16. reality by Anonymous Coward · · Score: 1

    yup. this proves that all this recent privacy talk is lip service.

  17. What kind of retarded question is that? by Opportunist · · Score: 2

    Why do you ask Facebook if they would apply the privacy laws used against them in areas where they don't have to? That's like asking a criminal if he's not going to rob a home in areas where robbery is legal.

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    1. Re:What kind of retarded question is that? by Anonymous Coward · · Score: 0

      It is possible to have higher standard than merely 'obeying the letter of the law'. Sometimes, you can profit from integrity.

      A bank could monetize what they know about customers - such as selling knowledge about how much money they have or what they store in the bank vaults. Chances are people would flee that bank and use another that have secrecy beyond what the law requires.

      On a similar vein, there might be a market for a social network that don't sell info on the users. (They can still show them generic ads, of course.) Such a network would make less money than facebook per customer - but might eventually gain the facebook userbase after enough scandals.

    2. Re:What kind of retarded question is that? by Opportunist · · Score: 1

      What a company does is dictated by the amount of money it costs them and the amount of money it makes them. Nothing else. Your example first of all assumes that there is another bank with better security and that enough customers care about it to offset the loss of revenue from information sales.

      What we're talking here is VASTLY more money being made by selling that private information. Even if FB wasn't the biggest privacy wholeseller but had the size of what's left of MySpace, it would STILL be more profitable to trade user information than "doing the right thing".

      If you think that something like this can regulate itself, you're deluded.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
  18. GDPR is awesome by Cederic · · Score: 2

    Until May there's a 10 quid charge for making a subject access request. From May that charge goes away, you can make them for free.

    So I'll be writing to Facebook, and Twitter, and Google, and the credit agencies, and a few other organisations and demanding all of my data from them.

    Then I'll be writing to Facebook, and Twitter, (etc), and inviting them to delete or correct all my data.

    After that, because it's free, I'll be writing to them all again to request a copy of my data. At this point either changes will have been made or I start making money.

    It's lovely.

    1. Re:GDPR is awesome by Zocalo · · Score: 1

      I suspect you're not the only one planning on doing that. You might find this template useful for maximising your return, because the more points they have to fsck up the better, right?

      --
      UNIX? They're not even circumcised! Savages!
    2. Re:GDPR is awesome by Cederic · · Score: 1

      Not the worse template. I think I'd write it a little differently, but he's covered almost all of the key points.

    3. Re:GDPR is awesome by Anonymous Coward · · Score: 0

      The GDPR has considered the existence of pretentious assholes who think their obnoxiousness can be rewarded in some way or the other. But obviously, you haven't read that. Article 12, comma 5.

      Where requests from a data subject are manifestly unfounded or excessive, in particular because of their repetitive character, the controller may either:

              charge a reasonable fee taking into account the administrative costs of providing the information or communication or taking the action requested; or

              refuse to act on the request.

    4. Re:GDPR is awesome by Cederic · · Score: 1

      Were I planning to send five requests a month then that clause (of which I was already aware) would indeed apply.

      I'm not. I'm planning to make two requests, the second 2-3 months after receiving the results from the first, for the purposes of assuring that the corrections required have been made.

      That's not vexatious, unfounded, repetitive or excessive and I'm happy to discuss that in front of a judge if required.

  19. We need to pressure other companies as well by Anonymous Coward · · Score: 0

    Not just Facebook. The evil forced data collection happens on most devices and apps.

    Windows 10, Roomba etc. You can't trust a piece of technology these days.

    We should all start lobbying for more than EU strict privacy laws.

  20. Sorry, US no free ride by mysidia · · Score: 1

    If you WANT European-style privacy protections You have to Move to Europe, OR get your US legislators to pass similar laws.

    And US legislative hearings are just a charade for your politicians to make you think they care.

    There's no right to just grill Facebook and get them to do whatever you want them to do in respect to your privacy. They're only going to protect your information and give you privacy rights in the way that LAWS require them to AND prevent them from casting away by written agreements.

  21. Do i need to have residency? by Anonymous Coward · · Score: 0

    I am a dual citizen living in Canada, as such i do not know how these requests are processed in Europe. Do i need to have residency or is citizenship enough? How will Facebook deal with such requests from people who do have residency but also travel and live in Canada for part of the year? Especially considering that they have a one person one account policy?

    In this case Zuck is just trying to stem the bleeding from his company because if he said that he was going to extend those protections world wide FB stock would drop even further.

  22. GDPR is already law in the EU. by Anonymous Coward · · Score: 0

    GDPR became EU law on 14 April 2016. (And was in preparation since 2012). It is not a case of "...ahead of its implementation in May". It's already implemented. What runs out at the end of 24th May is the amnesty period for non-compliance.

  23. GDPR you and them by Anonymous Coward · · Score: 0

    GDPR is more complex than "we ignore it outside of Europe". It covers all personal data processed in Europe And any personal data for a European citizen irrelevant of where the data is held and processed.

    If I (European citizen) not part of Facebook have my details added to Facebook by a friend (non European) in SomeCountryNotInEuropeBurge, my data is still covered by GDPR.

    This is critical to my rights as a European citizen. My personal data should be respected in the same way as my passport is.

    Facebook, you provide an amazing service to the world, but please know that not everyone wants their data processed by you.

  24. Technically they don't have a choice by WillAffleckUW · · Score: 1

    EU privacy rights apply to EU citizens in the EU and North America under data treaties, and to a whole list of other nations.

    So, in effect, if FB doesn't do this, it's in violation.

    --
    -- Tigger warning: This post may contain tiggers! --
  25. The eu privacy regulations are only one standard by Anonymous Coward · · Score: 0

    Facebook is awful. That said, some of the GDPR implementation details are dumb, and others are well meaning but a pain in the butt to implement for very little value. You can do a lot better on handling data misuse rather than following it strictly to the letter.

  26. European law by manu0601 · · Score: 1

    The European law, called the General Data Protection Regulation (GDPR)

    There is no European law. National parliaments, not EU institutions, vote laws.