Bonum Certa Men Certa

EPO and Microsoft Collude to Break the Law -- Part I (Start of Series): Enter the “Cloud of Unknowing…”

Previous parts:



Clown of the unknowing
According to Thomas Petri, Bavarian Data Protection Commissioner "nobody is really in charge" when it comes to data protection matters at the EPO



Summary: The first part of an important series; historically, EPO has always sent out aggressive lawyers to issue threats when we exposed EPO-Microsoft collusion

THIS Part I isn't the same as the introduction to Part I. This is the body of the long story, which will be told responsibly and prudently for the coming fortnight, several times per day. Without further ado, and in spite of suppression attempts, we start this series.






Back in June 2015, it was reported that the Bavarian Data Protection Commissioner, Dr Thomas Petri, and the Federal German Data Protection Commissioner, Andrea Vosshoff, had raised serious concerns about the state of data protection at the EPO.

According to the German press, Dr Petri had previously investigated the data protection framework at the EPO in the spring of 2014 following a complaint and he had come to the conclusion that it was seriously deficient.

Referring to the lack of any genuine independent oversight in data protection matters, Dr Petri stated: "It emerged that nobody was really in charge".

"An optimist might like to believe that things have surely improved since then. Unfortunately there is no evidence of this."He called for an external data protection supervisor to be assigned to the EPO because the internal inspectors were not independent enough and "in the absence of any action matters are likely to get out of hand".

An optimist might like to believe that things have surely improved since then. Unfortunately there is no evidence of this.

In the meantime the EPO seems to have just muddled along relying on its traditional "three monkeys" approach to "rebutting" external criticism of its data protection framework.

3 monkeys
The EPO's approach to "rebutting" criticism of its data protection framework: See no evil – hear no evil – speak no evil



For example, when the EU General Data Protection Regulation (GDPR) came into effect in May 2018 during the final days of the Benoît Battistelli régime, the EPO's response was to issue a self-serving communiqué (warning: epo.org link) proclaiming its commitment to "ensuring the highest level of data protection" and announcing that "a recent audit report has confirmed a close alignment with the GDPR legal framework".

"The reader is expected to take the EPO's claim at face value despite the fact that it is scarcely credible that an independent external audit could have arrived at such a conclusion."Of course no substantive information about the "recent audit report" was provided.

The reader is expected to take the EPO's claim at face value despite the fact that it is scarcely credible that an independent external audit could have arrived at such a conclusion.

If Dr Petri was of the considered opinion that the EPO's data protection framework was deficient when measured against pre-GDPR data protection standards, then it's difficult to see how the same framework which hadn't changed in the meantime could be considered meet the even more stringent data protection standards imposed by GDPR.

As a matter of fact, a report commissioned by the EPO staff union SUEPO from external legal experts in 2016 confirmed that the EPO's data protection framework was not compliant with EU data protection standards and was in urgent need of a radical overhaul.

But it's necessary to understand that we are dealing here with the logic of the "système Battistelli".

"Perish the thought that someone could be so impudent as to call for an independent audit…"If Battistelli insists that the EPO's data protection framework is GDPR-compliant, well then it has to be. Anybody who dares to question that claim had better watch out! Perish the thought that someone could be so impudent as to call for an independent audit…

And it would be a grave mistake to think that things have improved on this front following Battistelli's departure.

More recently in September 2020, the EPO published a notice on the topic of "Data privacy policy for the processing of personal data in Microsoft 365".

Once again the reader is assured:

"The protection of your privacy is of the utmost importance to the European Patent Office (EPO). We are committed to respecting and protecting your personal data and ensuring your rights as a data subject. All data of a personal nature (i.e. data that can identify you directly or indirectly) will be processed fairly, lawfully and with due care."

For good measure the well-rehearsed schtick about GDPR-compliance is trotted out:

"We strive to keep our data protection framework in line with current best practices. A recent audit report has confirmed that it is in close alignment with the EU’s General Data Protection Regulation (GDPR)."

But where is this mysterious "recent audit report"?

Is it the same one that Battistelli referred to over two years previously back in May 2018?

"But where is this mysterious "recent audit report"?"Of course you're not supposed to ask and if you have the temerity to do so, then you'd better not hold your breath waiting for an answer.

But when you peel away the PR façade, what the public notice of September 2020 does provide in terms of factual evidence is an irrefutable indication of the increasing reliance of the EPO on cloud computing services hosted by Microsoft.

In the next part we will see how this was confirmed by a recent internal communiqué from EPO Vice-President Steve Rowan (warning: epo.org link), formerly Director of Patents, Trade Marks, Designs and Tribunals at the UKIPO.

Recent Techrights' Posts

Open Source Initiative (OSI) Privacy Fiasco in Detail: A "Deep Dive" Into the Complaint at the California Privacy Protection Agency
There are many facets to it and it may be the first complaint of several
Microsoft Problems in Europe Even Before the Cheeto Tariffs
The case of Romania, Europe's notorious Microsoft fan
Oman in 2025: GNU/Linux Growing to 5%
what can Microsoft do about it except sabotage the PCs?
Microsoft Shares Collapse Again (Down $101), Fifth Round of Microsoft Mass Layoffs in Less Than 100 Days in 2025
disaster
 
Gemini Links 08/04/2025: Gabbro 0.1.4 and Disillusioned With Social Control Media
Links for the day
Microsoft Windows in Jordan: From 99% Down to 10%
This is becoming more "normal"
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, April 07, 2025
IRC logs for Monday, April 07, 2025
Gemini Links 07/04/2025: Stock Market, Galène, and DMT Entities
Links for the day
During the Weekend We Said Fedora DEI Requires Proprietary Software, Now the Chat About It Is No Longer Accessible Over the Open Web
is this just a coincidence and an habitual change in Element?
Links 07/04/2025: US Measles Fatalities and China Launches HDMI and DisplayPort Alternative
Links for the day
Links 07/04/2025: More Cuts to Science Funding, Snail-speed Internet in Germany
Links for the day
Gemini Links 07/04/2025: Leasehold and Safe Gifts
Links for the day
In Some Countries, Laptops and Desktops Become a Dying Breed (Even Before Tariffs), Windows Has Nowhere to Go
expect more GNU/Linux on new and existing laptops
When the Credibility or 'Quality' of Clients Ceases to Matter, It's About Helping Rich Companies Like Microsoft Censor Critics (No Matter the Risks)
Bad ideas typically result in undesirable outcomes
UAE: GNU/Linux and Android at Record Levels, Windows at New Lows and Falling Below Apple
Even iOS is measured as bigger than Windows this month
Links 07/04/2025: Reddit Occupied (Social Control Media Controlled by Oligarchy), Demise of Globalisation Ongoing
Links for the day
Windows Has Fallen to All-Time Lows in Switzerland Since GNU Celebrated 40th Anniversary (GNU’s 40th Birthday in Biel, Switzerland)
GNU/Linux has been doing well in Switzerland
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, April 06, 2025
IRC logs for Sunday, April 06, 2025
Links 07/04/2025: Leaving Gemini/smolweb and Mastodon Migrations
Links for the day
In Iraq, Windows 3.1 (Percent)
There's also zero
One Person's Take on Jef Spaleta, the New Fedora Project Leader
"With a little searching, I wonder what else may be found regarding Microsoft."
Links 06/04/2025: Flood, Cool Gemini Capsule, and Long Form
Links for the day
Links 06/04/2025: Science, Politics, and Pricier Goods
Links for the day
LLM Slop Has Virtually Killed unixmen.com and Many Other Sites
There's no longer any incentive to write real articles in there
Sharp Declines for Microsoft Windows in Bangladesh (Pop. ~175,000,000), Big Gains for GNU/Linux
Microsoft Windows has been having a really hard time in poor countries
Links 06/04/2025: Fake Reviews, Privatisation Heists, and "AI" as Smokescreen for Impoverishing Humans
Links for the day
Taking a Moral Stand Against Strategic Lawsuits Against Public Participation (SLAPPs) and the Worst Offenders/Facilitators
Any other stance would sidle with moral depravity or moral hazard
Links 06/04/2025: Many New Acts of Repression and Elements of Financial Depression
Links for the day
In Qatar GNU/Linux Rose From Under 1% to Over 4% in Two Years (or Over 5% If Counting ChromeOS)
It's a big improvement compared to what we saw last year
LLM Scrapers Are a Nuisance, But They're Also a Reminder It's Time to Make Your Site Static
Perhaps the best protection is the ability to endure surges
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, April 05, 2025
IRC logs for Saturday, April 05, 2025
Links 06/04/2025: Attacks on Education, Fake Patents, and Fake (Illegal) Patent Courts
Links for the day
France: Apple and Microsoft Down, GNU/Linux Up to New Record Levels
How will tariffs against France impact things in the coming months?