It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
originally posted by: EvillerBob
It's not "personal data" in the way that most people think, it's "data about an identified or identifiable person, either directly or indirectly".
i.e., arguably, websites may not be able to restrict access to only those who consent to the use of cookies, etc
originally posted by: ArMaP
originally posted by: EvillerBob
It's not "personal data" in the way that most people think, it's "data about an identified or identifiable person, either directly or indirectly".
When I said "personal data" I was thinking about data that shows something related to the person, that's why they talk about "unique identifiers".
If the cookie doesn't have any data that can be directly connected with the person then it's not affected by the GDPR.
originally posted by: roadgravel
For some websites, parts of the site cannot function properly without cookies. Hopefully such a thing would be considered.
A site can be made to function without cookies, so there comes the question of whether cookies are a matter of convenience or necessity.
originally posted by: roadgravel
a reply to: EvillerBob
A site can be made to function without cookies, so there comes the question of whether cookies are a matter of convenience or necessity.
How would it maintain the state between pages? Have the user enter his name and password on each page?
edit:
i suppose it could be done with only page data although it might be easier to defeat security and less efficient.
originally posted by: Elostone
Well, GDPR is here,
But where are our UK friends?
Is ATS non compliant or can our UK members log in?
Some high-profile US news websites are temporarily unavailable in Europe after new EU data protection rules came into effect. The Chicago Tribune and LA Times were among those saying they were currently unavailable in most European countries. Meanwhile complaints were filed against US tech giants within hours of the General Data Protection Regulation (GDPR) taking effect. GDPR gives EU citizens more rights over how their information is used. It is an effort by EU lawmakers to limit tech firms' powers. Under the rules, companies working in the EU - or any association or club in the bloc - must show they have a lawful basis for processing personal data, or face hefty fines.
originally posted by: studio500
That form of consent is no longer valid and baseless in respect to EU nationals data. This is perhaps one reason why some news outlets are currently choosing to block EU access until they can be sure they are compliant.