this post was submitted on 11 Nov 2025
737 points (99.6% liked)

Technology

76899 readers
4335 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
737
Surprise EU rollback of 'GDPR' digital-rights rules prompts alarm (euobserver.com)
submitted 1 week ago by schizoidman@lemmy.zip to c/technology@lemmy.world
128 comments fedilink hide all child comments
 

cross-posted from: https://lemmy.zip/post/52834195

https://archive.is/je5sj

“If adopted, these amendments would not simplify compliance but hollow out the GDPR’s and ePrivacy’s core guarantees: purpose limitation, accountability, and independent oversight,” Itxaso Dominguez de Olazabal, from the European Digital Rights group, told EUobserver.

The draft includes adjustments to what is considered “personal data,” a key component of the GDPR and protected by Article 8 of the Charter of Fundamental Rights of the European Union.

you are viewing a single comment's thread
view the rest of the comments
[–] affiliate@lemmy.world 70 points 1 week ago (3 children)

The commission pitched the Digital Omnibus as simplifying and streamlining digital regulations to relieve the regulatory burden for digital services and AI systems, with a specific focus on helping small-to medium-sized businesses in Europe; however, the draft proposal goes further than expected.

won’t somebody think of the poor “AI” companies? 😢

[–] 87Six@lemmy.zip 23 points 6 days ago (2 children)

Helping small to medium-sized businesses in Europe

Yyeeaa as if these small companies are the ones that yelled in favor of this. The lady at my local grocery shop always told me how it would be easier for her to do her job if this change in GDPR made it through...

[–] deczzz@lemmy.dbzer0.com 1 points 6 days ago

It actually is a problem for small businesses, especially start ups. Not agreeing with the approach but the GDPR law is extremely complicated to find your way around - talking from experience. Support the idea, implementation could be better.

[–] gandalf_der_12te@discuss.tchncs.de -3 points 6 days ago (2 children)

well yeah in my personal environment, the people i talk to IRL, lots of people complain about the supposedly overly-strict GDPR rules and about the fact that it makes management quite a bit more challenging, because they have to be careful about what information to put/share where. Like, even if you make a public google sheets document as a calendar for a small company/school where a group of people can enter their email addresses, that's already a GDPR violation, because personal data becomes accessible by other people. As a result, you theoretically would need very elaborate custom-forms, where only you can enter information but nobody else can see it. It's a hell of a lot of work, IMHO. So yeah, people have semi-meaningfully complained about it.

[–] Capricorn_Geriatric@lemmy.world 2 points 6 days ago* (last edited 6 days ago) (1 children)

Yeah, that's not it.

There's this thing known as consent and purpose. For a GDPR violation, you need to lack either.

When your job has a noticeboard of names, emails and birthdays, they probably got your consent to post it up there. They didn't get consent to post it onto Facebook.

Yeah, sharing a photo can be a GDPR violation. Because you need to prevent unneccessary processing of data. Like what Facebook does. That's why most places require you to sign a waiver to allow photos and similar stuff being posted online.

It can be a lot of work. But so is writing a contract. You can't just do some stuff willy-nilly, and for a good reason.

That being said, the GDPR is mostly unenforced. What it means in practice is "don't ask, don't tell". Meaning, if you keep the info you do have under wraps, you should be fine. Just don't go whoring your customers'/employees' info out to your 18 356 "data partners". Bonus points for having an "Accept All" and "More Options" button, but no "Reject All".

1st prize for those whose "Reject All" doesn't encompass "legitimate interest".

[–] 87Six@lemmy.zip 1 points 6 days ago

You really hit the main points of our gdpr training. You're right.

[–] Krzd@lemmy.world 2 points 6 days ago

What. Google forms exist. It's really not that difficult. And also, you can just have them agree to share their emails with each other??

[–] deathbird@mander.xyz 14 points 1 week ago

My grandpappy started this here AI company with a handful of GPUs he whittled himself, and I'll be damned if I'm gonna let big gobmint regulations cost us the family business!

[–] iii@mander.xyz 2 points 1 week ago

I think the point is that the EU isn't participating in the software industry, including AI, at all.