Hi Thomas,
On 1/25/19 4:18 PM, Thomas Corte wrote:
> Hello Niels,
>
> On 1/25/19 15:39, Niels ten Oever wrote:
>
>> But if the IETF produces protocols which are non-GDPR compliant upon
>> implementation, and are violating human rights, that is imho not something
>> we should want.
>
> Why should the IETF, a *global* organization, restrict its protocols to
> ensure GDPR compliance, i.e. a piece of legislation only applicable in
> the *European Union* and nowhere else?
>
I fully agree that the IETF does not need to restrict its protocols to the
legislations of one geographical area. But I think the IETF should help
implementers to not violate the human rights of end-users, and consider
regulation when implementing. The IETF can seek to do so by thoroughly
analyzing the potential impacts of the protocols that are produced in and
published by the IETF and report on the in privacy, security and human rights
considerations.
Best,
Niels
PS The legislation not only applicable in the European Union, but anywhere in
the world where the data of EU citizens or residents is held.
> Best regards,
>
> Thomas
>
--
Niels ten Oever
Researcher and PhD Candidate
Datactive Research Group
University of Amsterdam
PGP fingerprint 2458 0B70 5C4A FD8A 9488
643A 0ED8 3F3A 468A C8B3
_______________________________________________
regext mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/regext
