Comply with GDPR (Strict EU privacy law)

Status

Ajdin

I used to be a big deal on here but now irrelevant
Supreme
Feedback score
12
Posts
2,419
Reactions
3,404
Resources
0
Hi,

So before you start shitting on me for absolutely no reason, I'd like to note the importance of this, but first, quick introduction.

I work as a freelance data protection officer. I'm responsible for the privacy, security, availability and integrity of data for a handful of businesses so I definitely know a bit about internet laws.

So a while back, the EU announced the enforcement of GDPR (General Data Protection Regulation). It's basically a +100 page law that explains new privacy and data laws for the EU. I'm not going to go into detail as to what rules the GDPR actually has (because that would essentially take several hours). But it's worth nothing that this is actually quite serious. Just Googling a little after GDPR articles, you'll find more information about this:
http://www.wired.co.uk/article/what-is-gdpr-uk-eu-legislation-compliance-summary-fines-2018
http://www.bbc.com/news/business-40441434

Well, you might think, but bosny! MC-Market is ran under a company in Australia, we do not need to follow this.

Well, that's where you're wrong kiddo.

To make it all easy for you guys, go read this page real quick: https://www.oaic.gov.au/media-and-s...regulation-guidance-for-australian-businesses

Official Aus gov site:
From 25 May 2018 Australian businesses of any size may need to comply with the GDPR if they have an establishment in the European Union (EU), if they offer goods and services in the EU, or if they monitor the behaviours of individuals in the EU.

Now you might also think, "Ha, but MCM is just a blockgame forum, who cares honestly?"

Again, that's where you're wrong kiddo. The GDPR is something very new. We haven't seen anything closely similar to it previously. It's scary. It's also actually going to be very easy to report businesses who do not follow this law. It's nothing like COPPA or similar.

MC-Market would need to go under some changes in terms of database structure, privacy policy, terms of service, data retention, etc etc.

1 requirement that I am going to say is that every company/institute needs a DPO (Data protection officer). This person is responsible for ensuring that the company/website complies with all laws(including a compliant privacy policy which MC-Market doesn't have at the moment). Additionally, this person is going to be responsible for ensuring that all site visitors can have their questions answered regarding this law.

As I've done over 35 audits in the past 12 months, I can say that MC-Market doesn't need any fundamental changes to comply before the final enforcement date (25th of May 2018) so getting yourself safe for the GDPR shouldn't be that difficult.

Thanks for reading.
 
Type
Suggestion
Status
Implemented
Last edited:
PebbleHost
High performance, consistent uptime and fast support. Minecraft hosting that just works.

Choo

Supreme
Feedback score
69
Posts
2,972
Reactions
4,749
Resources
0
With the new update on Privacy Policy, it looks like they are complying with it?
 

Mick

BuiltByBit Owner
Management
Feedback score
28
Posts
6,413
Reactions
7,704
Resources
0
With the new update on Privacy Policy, it looks like they are complying with it?
Indeed.

Thanks for the heads up and information Bosny, I'll move this to accepted.
 
Status
Top