Leggendo il documento ufficiale di IAB (FAQ), non serve ipotizzare la
cancellazione dei dati: non ci pensano nemmeno.
<https://iabeurope.eu/all-news/apd-ruling-clears-way-for-work-on-developing-tcf-into-a-formal-gdpr-code-of-conduct-iab-europe-statement-on-the-apd-decision-announced-today/>
APD Ruling Clears Way For Work on Developing TCF into a Formal
GDPR Code of Conduct: IAB Europe Statement on the APD Decision
Announced Today
*2nd February, Brussels, Belgium*: IAB Europe acknowledges the decision
announced today by the Belgian Data Protection Authority (APD) in
connection with its investigation of IAB Europe. We note that the
decision contains no prohibition of the Transparency & Consent Framework
(TCF), as had been requested by the complainants, and that the APD
considers the purported infringements by IAB Europe that it has
identified to be susceptible of being remedied in six months.
We reject the finding that we are a data controller in the context of
the TCF. We believe this finding is wrong in law and will have major
unintended negative consequences going well beyond the digital
advertising industry. We are considering all options with respect to a
legal challenge.
Notwithstanding our grave reservations on the substance of the decision,
we look forward to working with the APD on an action plan to be executed
within the prescribed six months that will ensure the TCF’s continuing
utility in the market. As previously communicated, it has always been
our intention to submit the Framework for approval as a GDPR
transnational Code of Conduct. Today’s decision would appear to clear
the way for work on that to begin.
For more information on the APD decision on IAB Europe and the TCF,
please visit our FAQ document here
<https://iabeurope.eu/wp-content/uploads/2022/02/APD-Decision-FAQ-v2.pdf>.
<https://iabeurope.eu/wp-content/uploads/2022/02/APD-Decision-FAQ-v2.pdf>
On 08/02/22 22:28, Giacomo Tesio wrote:
Google, Amazon, and the entire tracking industry relies on IAB Europe’s
consent system, which has now been found to be illegal following complaints
coordinated by ICCL.
EU data protection authorities find that the consent popups that plagued
Europeans
for years are illegal. All data collected through them must be deleted.
This decision impacts Google’s, Amazon’s and Microsoft’s online
advertising businesses.
[...]
The consent popup system known as the “Transparency & Consent Framework”
(TCF) is on 80% of the European internet.
The tracking industry claimed it was a measure to comply with the GDPR.
Today, GDPR enforcers ruled that this consent spam has, in fact,
deprived hundreds of millions of Europeans of their fundamental rights.
[...]
# Deletion of data
All data collected through the TCF must now be deleted by the more than 1,000
companies that pay IAB Europe to use the TCF.
This includes Google’s, Amazon’s and Microsoft’s online advertising businesses.
The decision said those who implement the TCF must “take the appropriate
measures,
in line with Articles 24 and 25 GDPR, ensuring that personal data that has
been collected in breach of Articles 5 and 6 GDPR is no longer processed and
removed accordingly”
Continua su:
https://www.iccl.ie/news/gdpr-enforcer-rules-that-iab-europes-consent-popups-are-unlawful/
Io vorrei farvi riflettere su questo: ipotiziamo che Google domani affermi di
aver
cancellato tutti i dati raccolti illegalmente sulla base del TCF.
Chi verifica che non sta semplicemente mentendo?
Una volta che i dati sono stati processati e compressi/compilati (ovvero
offuscati)
in un software programmato statisticamente (aka "AI") chi andrà a decomprimerli
e deoffuscarli per verificare la loro eliminazione?
Naturalmente si potrebbe imporre a Google di rieseguire tutti i processi di
programmazione statistica (ovvero tutti i "training" delle proprie "AI") da zero
e SENZA quei dati.
Ma dovrebbero rieffettuare tutto il processo in pubblico (rivelando i propri
peziosissimi segreti industriali) altrimenti sarebbe impossibile verificare che
tali dati
NON vengano utilizzati.
Sappiamo tutti che questo NON accadrà.
Google continuerà ad utilizzare tutti i dati raccolti, perché nessuno può
veramente dimostrare che lo sta facendo.
Idem Amazon, Microsoft e tutte le aziende grandi (e lontane) abbastanza da poter
deridere la Legge e soprattutto i diritti di noi europei.
Che ci lasciamo deridere.
Intanto migliaia di scuole italiane continuano ad usare Google Classroom.
Giacomo
_______________________________________________
nexa mailing list
nexa@server-nexa.polito.it
https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
_______________________________________________
nexa mailing list
nexa@server-nexa.polito.it
https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
