Bonum Certa Men Certa

EPO Management Consciously Breaking European Union Laws: Staff and Stakeholders Subjected to Illegal Tactics and Practices, Now Exam Takers As Well

Orwell's nightmare, now with diplomatic immunity and no oversight whatsoever

Mirrored objective



Summary: The EPO routinely breaks privacy laws, knowing that there's not even an attempt to enforce the law against the EPO's dictators; we've lost count of the instances/number of privacy scandals at the EPO, but we keep adding more to our list

Staff and stakeholders have their privacy rights violated, as we noted last month and again this morning. Under normal circumstances, Benoît Battistelli, António Campinos and their ilk would risk arrest for what they do at the EPO. But they have diplomatic immunity and half a decade ago we saw Battistelli getting away with very serious crimes, e.g. visitors subjected to illegal surveillance on EPO premises (it was all over the media at the time, back when the media actually bothered covering EPO scandals).



Wall of MirrorsThe Commission's whitewash of corruption at the EPO means that EU law won't be enforced and rules won't be honoured; just like that... more abuse, more immunity, more impunity...

Rose Hughes (AstraZeneca and EPO apologist) has just been advertising a sham exam (EQE) with extra surveillance now added to it. The corruption associated with EQE was covered here in a series earlier this year. Nobody was held accountable. Nobody.

Based on this post, the EPO adopts more spyware; basically malware. It's as if COVID-19 makes 'magic' and renders the illegal "excusable" ever so magically. To quote: "The EPO has released the first detailed information for candidates on the arrangements for the online pre-EQE and EQE next year. Full details can be read here. The examinations are scheduled to take place the week of 1 March 2021. The online exams will be taken using the dramatically named "LockDown browser", which candidates are being advised to log in to 20 minutes before the exam."

"A lot of things like the "LockDown browser" are being imposed on students despite being in violation of human rights."So the data is going to Microsoft's next-door neighbours at Respondus, who are flirting with GDPR violations and looking for cleverly-worded excuses. A lot of things like the "LockDown browser" are being imposed on students despite being in violation of human rights. Lack of actual enforcement is a very serious problem. Laws without enforcement are toothless tigers.

We'd like to bring up an old document (2019) [PDF] in which staff representatives at the EPO named several GDPR violations. Here's the full document for the PDF-hostile/averse folks.

EPO GDPR p1

EPO GDPR p2

EPO GDPR p3

EPO GDPR p4

EPO GDPR p5

EPO GDPR p6

Notice the part about the UPC: "In the near future the EPO might be entrusted by the EU to process patent application in the framework of the Unitary Patent. It is unlikely that member states and applicants would accept a situation in which the EPO would process personal data of EU citizens in the name of the European Union without respecting EU legislation for data protection."

Here's the corresponding and more concise message to EPO staff:

Data protection @ EPO, quo vadis?



Data protection guidelines at the EPO should be aligned to European regulations

[...]

New EU Data Protection Regulations

New regulations for data protection have been introduced by the EU in 2018, the General Data Protection Regulation[1] (GDPR). It safeguards EU citizen’s fundamental right to protection of their data and it is directly binding for all EU member states. However, it is not binding for the EPO.

EPO has its own data protection policies

The EPO follows its own data protection policies: the Data Protection Guidelines[2] (DPG). Staff representatives pointed numerous times to the gap between the DPG and the European regulations. Commenting on the GDPR, former VP5 Raimund Lutz stated that the EPO is very close to EU legislation, because the EPO always has applied the “highest level of data protection [...] including the nomination of an independent Data Protection Officer (DPO)”. Furthermore, a recent audit report (2017) has been cited which “has confirmed a close alignment with the GDPR legal framework.”[3]

Data protection and the Unitary Patent

In the near future the EPO might be entrusted by the EU to process patent application in the framework of the Unitary Patent. It is unlikely that member states and applicants would accept a situation in which the EPO would process personal data of EU citizens in the name of the European Union without respecting EU legislation for data protection.

EPO data protection guidelines do not meet EU standards

An independent and external legal analysis[4] in 2016 concluded that the DPG did not meet the standards of data protection laws in the EU at that time. The analysis further stated that there is a lack of independent oversight, of an effective system of checks and balances to prevent abuses, and of effective means of redress in circumstances where the rights of individuals are infringed.

Staff representation proposes to align EPO policies to EU policies

Staff representation finds that the introduction of the new European guidelines is an opportunity to re-open the discussion on data protection at the EPO: The data protection policies at the EPO can be improved in order to better protect the data of staff and applicants/users alike. The EPO used to have a long tradition to strive to comply with the highest standards in data protection[5]. The last reform in 2014 can only be seen as deterioration in this matter[6]. An alignment of its data protection guidelines to EU regulations would be a step towards a modern data protection framework and would contribute to establish the EPO as the leading patent office.

Staff representation suggests to:

The EPO policies on data protection should be aligned to the EU regulations, which present at the moment the most comprehensive and modern legislation in data protection matters.

The role of the Data Protection Officer, who is responsible for the implementation of the EPO data protection, should be enforced and its independence should be assured.

An external and independent oversight body should be appointed with the task to monitoring the application of data protection policies at the EPO.

Separate data protection policies should be defined for investigative procedures (e.g., misconduct or fraud). Its implementation should be the responsibility of a distinct Data Protection Officer nominated, e.g., by the Administrative Council.

Rules to safeguard data processing should be mended. For example, transfer of personal data to third countries and the change of purpose, e.g., using personal data for purposes for which the user has not consented to, should be tightly regulated.


[...]

[1] GDPR, link

[2] Guidelines for the protection of personal data in the European Patent Office, link

[3] VP5 announcement on Intranet, 25.05.2018, link

[4] See section 9 “Data protection framework”, Breaches of basic and fundamental rights at the EPO, Bretton Woods Law, Legal Opinion, 2016, link

[5] Data protection – Current situation in the EPO and in Europe, Gazette 15/95, 03.07.1995, page 8, link

[6] GAC/AV 4/2014, Opinion of the CSC about Data Protection Guidelines, link


It is hardly shocking that "EPO data protection guidelines do not meet EU standards" and to think they're now subjecting people who merely take an exam to the same low (and non-complying) standards is the cherry on the cake. We await -- whilst expectations are admittedly low -- EU enforcement action/s. Maybe the German ministry of injustice can once again come up with a bunch of nonsense (lies) about why this is perfectly acceptable.

Recent Techrights' Posts

Links 26/10/2025: Microsoft Spies on Gamers, Open Transport Community Conference
Links for the day
Links 26/10/2025: LLM Slop / Plagiarism Programs Continue to Disappoint, CISA Layoffs Threaten Systems
Links for the day
Gemini Links 26/10/2025: Gemsync and Joining the Small Web
Links for the day
India.com a Click-baiting, SEO-Spamming, Slopfarming Heap
They do this almost every day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, October 25, 2025
IRC logs for Saturday, October 25, 2025
Without XBox Consoles, XBox is No More, It's Just a Brand (More Rumours of Microsoft Ending XBox, Then Laying Off Lots of Staff)
All signs indicate that Microsoft wants to "exit" the XBox business (not brand), but it does not want to publicly admit this as it would alarm staff and shareholders
Gemini Links 25/10/2025: Portugal, Midnightpub, and "Tech Right Admins"
Links for the day
Almost 2026 Already (When We Turn Twenty)
In just over a year the site will turn 20
When "Sponsored Feature" in The Register MS Means Ponzi Scheme Promotion From the Communist Party of China (CPC)
the promotion of a financial scam
Week of EPO Leaks: Workers of the EPO Are Getting a Pay Cut While Prices Rise Fast
More to come in the next few days
Microsoft is Finally Giving Up on XBox, The Chief Says the Grapes Are Sour Anyway
Microsoft loses hundreds of dollars on each XBox that it sells
Slopwatch: LinuxSecurity, UbuntuPIT, and Various Slopfarms Propped up by Google News
Why can't Google News do better than this?
Links 25/10/2025: Two New Smokescreens for Scam Altman and ‘TikTok USA’ Remains in Limbo
Links for the day
Bad faith: can't change Debian Social Contract (DSC) without unanimous consent of every joint author
Reprinted with permission from Daniel Pocock
Confirmed: Very Close Friend of Bill Gates and Microsoft's Biggest Patent Troll Nathan Myhrvold Flew the Lolita Express (a Gateway to Pedophilia), According to Bill Gates-Sponsored Seattle Times
There is no speculation or any "conspiracy theories" here;' those are verified facts
Gemini Links 25/10/2025: "The Highest Leader of The Global Civil Society Community", SSL Certificates Causing Bitrot
Links for the day
Links 25/10/2025: Target Layoffs and "Shutdown Sparks 85% Increase in US Government Cyberattacks"
Links for the day
"Big Data" Was a Big Lie
Remember "Big Data"? Remember "Data Scientists"...?
statCounter Has Been Broken for a Long Time
Considering the huge proportion of Web requests that come from LLM bots (more so this past year or two), statCounter may struggle to justify the operating costs
Techrights Anniversary Party on November 7th
Let us know if you need any accommodation-related arrangements
Trends That Must Alarm Microsoft and Mozilla
Expect Firefox to no longer be supported by various sites in the US
Why Microsoft Became the Layoffs Leader
The corporate media is projecting or signalling its own dishonesty when it tells us that Microsoft is a very "valuable" company while the data shows Microsoft is also a "market leader" in layoffs
Speaking for Ourselves and Letting the Facts Speak for Themselves
we've already published over 50,000 pages
For Second Time in a Day The Register MS Takes Money From Private Companies to Sell a Ponzi Scheme
Do not have empathy for those who have zero empathy towards you
IBM is Misleading IBM Shareholders
IBM is still all about vapourware and buzzwords
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, October 24, 2025
IRC logs for Friday, October 24, 2025
The Serial Slopper Starts Up - or Restarts - His Plagiarism Machine (LLMs)
Serial Sloppers like these don't belong in news sites. That's why he got sacked by BetaNews.
Links 24/10/2025: Esperanto Music History, Anxiety, and New Portals
Links for the day
[Video] Richard Stallman's Talk in Sweden, Attended by Nearly 700 People, is Now Online
The Web page is in Swedish, but the talk is in English
Slopwatch: LinuxSecurity.com, Linux Journal, and Pet Slopfarms of Google News
Why does Google News still advance these fake sites to the top of search results?
Links 24/10/2025: Inequality Grows, Billion-Dollar Scam Center Industry
Links for the day
Links 24/10/2025: "Independent Media in Cambodia is Collapsing" and Serious F5 Breach
Links for the day
Coping With the Site Going More Mainstream
Fame is no laughing matter
They Never 'Put Down' Corporations
There are "pests" that are traded in Wall Street
21 Pages in Less Than 7 Hours is No Joking Matter
We've become a lot more effective and efficient
Correct Information is a Valued Asset in the Age of Slopfarms and Public Relations (PR) or Spin
Publishing suppressed facts is never easy
The Register MS Continues to Bag Money to Promote a Ponzi Scheme, Even Money From China
Today in the front page
analytics.usa.gov: The Only Supported Version of Windows (This Past Week) is Only Used by About 13.9% of People in the US, the Home Base of Windows
Even Vista 7 is still used more
Rust is Very Secure
If only Rust itself is secure
Who Will be Held Accountable for Breaking Ubuntu by Imposing Rust on Otherwise-Functional Programs, in Effect Replacing GNU With Proprietary Microsoft (GitHub)?
they're practical people who merely point out that a bunch of buffoons not only ruin Ubuntu but also every future distro based on Ubuntu
Generation Chaff - Phase VIII: In Summary
Like "Science" with a capital "S", what we see here commercial interests usurping everything
Generation Chaff - Phase VII: Curtailing Alternative Media
There was always an obligation - a collective duty of sorts - to uphold independent journalism
Generation Chaff - Phase VI: Centralisation of Information (X, Cheetok/Fentanylware)
Would you trust information when controlled by such people?
Generation Chaff - Phase V: Censorship of Dissent (Painted as Harassment or Terrorism)
Censorship is all around us now
Generation Chaff - Phase IV: Apps Only Few Companies Decide On
Tools are being collectively confiscated, under the premise or false prospect of "security"
Generation Chaff - Phase III: Slop and Plagiarism
A lot of the current so-called 'economy' is built upon false valuations
Generation Chaff - Phase II: "Cloud", Blockchains and Other Hype
For those of us who turned down those propositions there was a struggle; we needed to justify not having skinnerboxes or "social" accounts in some site run by a private company
Generation Chaff - Phase I: Social Control Media
IRC predates the Web
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, October 23, 2025
IRC logs for Thursday, October 23, 2025
More Clues Shed on Collapse of Microsoft XBox
XBox is basically circling down the drain as Microsoft implements 2-3 waves of layoffs each month
'Vibe Coding' Doesn't Work
In a lot of ways, so-called 'Vibe Coding' is already considered vapourware or a passing fad promoted in the media by managers who try to justify mass layoffs, especially ridding companies of "very expensive" software engineers
Links 24/10/2025: Microsoft's Killing of XBox Connected to Revenue/Profit Problems, "How Elon Musk Ruined Twitter"
Links for the day
Gemini Links 24/10/2025: 86,400 Seconds and "Society's Task"
Links for the day