Claimed that 'almost all companies are breaking the EU General Data Protection Rule (GDPR)'

by Dennis van der Heijden

The EU's new data protection rule " GDPR " which came into effect on May 25, 2018 obliges WEB site to "require consent for the user's personal information", and on many websites, personal information There is an influence such as pop-up regarding usage. Under such circumstances, specialists have criticized that "various changes that companies have made in conjunction with the entry into force of the GDPR are only the upper side."

'Everyone is breaking the law right now': GDPR compliance efforts is falling short - Digiday

According to several experts, "The content of GDPR's personal information protection regulation is ambiguous, and there is a big difference in interpretation between websites and companies," and the use of personal information based on GDPR It seems that the content of the agreement message of the company is also disjointed among the WEB sites.

There are various kinds of messages on personal information protection such as sites that ask for opt-in before using the site, sites asking for consent with embedded options, sites displaying "pop-ups" with "do not agree" buttons without "reject" button . Some have a pattern that "the text of the originally displayed cookie banner is simply rewritten as a wording about personal information".

Adrian Newby , Crownpeak 's Chief Technology Officer (CTO), who sells software on private information for companies, said, "Many companies and marketers are intentionally or unconsciously compliant with GDPR We are asking users to agree to use personal information in a way that is not possible. " Just because a popup asking for the consent of personal information protection comes out while watching the website, it is premature to think that "the momentum of personal information protection is rising by GDPR".

Mr. Thomas Bakdar , a media analyst at Denmark, said, "Almost all companies continue to operate in violation of GDPR, and we are going to continue to operate in the same way as before the entry into GDPR." . Meanwhile, as the EU shows a very aggressive trend towards the protection of personal information, it is predicted that big companies such as Facebook and Google will first be attacked under GDPR. In compliance with the criteria shown there, other companies are also planning to prepare a personal information protection system based on GDPR.

The rule of protection of personal information prescribed by GDPR is very ambiguous, for example Web sites such as Bloomberg and Forbes have taken a strict consent approach to the use of personal information, but with Guardian and MailOnline we agree with the banner. Also, the user's personal information may be used to analyze the site or it may be used to display effective advertisements. However, in many cases, the user can not make a choice such as allowing only one side to use it, and can only choose to permit either use or refuse either use.

So far, many companies have been in the state "they are flying as close to the sun as possible until someone burned out." It is supposed that various companies in violation of GDPR for a while as it is supposed to continue the operation of the WEB site in the state of violation Sires, and if somewhere is caught, changing the site design accordingly It seems likely.

in Web Service,   Security, Posted by log1h_ik