On 04/05/18 11:55, Stefano Bagnara wrote: > BTW not every data processing/publication require consent according to > GDPR. There's "legitimate interest" and it may have to be discussed if > publishing that data do harms more than not-publishing it.
legitimate interest vital interest necessary for contract - so if part of paying for a domain, means you are paying for a public contact to be published in whois legal requirement - government could compel public records for companies with domains or even people. And it is about writing `reasonable` policies that map into the above. GDPR is only really an evolution of existing data protection. The changes (apart from fines, and need to document compliance) aren't amazing. What is different is the volume of snakeoil lawyers, consultants and people who don't have a clue deciding on new `rules` that you must do today. It is always good to think about data protection and privacy. How can you be better? What is really necessary. Tim _______________________________________________ mailop mailing list [email protected] https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
