Bonum Certa Men Certa

EPO and Microsoft Collude to Break the Law -- Part V: The EU GDPR

Previous parts:



The EU GDPR
The US CLOUD Act and the EU GDPR entered into force at around the same time, but these regulations pursue completely different and inherently incompatible goals.



Summary: The António Campinos-led EPO is violating the privacy not only of EPO staff but also everyone whom that staff interacts with, in a clear violation of the General Data Protection Regulation (GDPR); today we explain the GDPR

A few months after the adoption of the CLOUD Act by the US Congress, the European Union's General Data Protection Regulation (GDPR) entered into effect on 25 May 2018, two years after the EU member states had reached agreement on a major reform of the existing EU data protection framework.



"The principles underlying the GDPR are not uniquely European and some of its protections can be found – albeit in weaker, less prescriptive forms – in US privacy laws and in Federal Trade Commission settlements with companies."The GDPR replaced the 1995 EU Data Protection Directive which was adopted at a time when the Internet was in its infancy. The new Regulation aimed to provide a reformed framework giving EU citizens more control over their own personal data and improving their security both online and offline.

The GDPR applies to all EU member-states and also to all countries in the European Economic Area (EEA) which includes Iceland, Norway, and Liechtenstein.

The principles underlying the GDPR are not uniquely European and some of its protections can be found – albeit in weaker, less prescriptive forms – in US privacy laws and in Federal Trade Commission settlements with companies.

However, in contrast to Europe, the US does not recognise a universal fundamental right to privacy. Notwithstanding the fourth amendment to the US Constitution, US government authorities can often obtain personal information without court approval. Legislation that provides a legal framework for the handling of data at approximately the same level as the The European Commission found in that the Safe Harbor Principles would provide "adequate protection" under Article 25 of Directive 95/56/EC, when it comes to the transfer of personal information from the EU to the US.

GDPR only exists in one single state: California.

"GDPR aims at protecting personal data, and thus the rights and information of European citizens."Although the US CLOUD Act and the EU GDPR entered into force at around the same time, these regulations pursue completely different goals.

GDPR aims at protecting personal data, and thus the rights and information of European citizens.

In contrast, the US enacted the CLOUD Act to clarify, extend, and speed up official access to electronic information held by US-based global providers, irrespective of the storage location of that data.

The bottom line here is that US companies are by nature not able to guarantee EU GDPR compliance, even if they provide their services via European subsidiaries.

"The bottom line here is that US companies are by nature not able to guarantee EU GDPR compliance, even if they provide their services via European subsidiaries."Regardless where their data processing operations are located, US companies fall under the jurisdiction of the US CLOUD Act which places them in a situation of conflict with the GDPR.

Likewise European data processors can’t be GDPR-compliant either if they rely on use US-based cloud providers to handle their services.

The inherent incompatibility between EU data protection regulations and US "data harvesting" legislation has been confirmed by the judgments of the Court of Justice of the European Union in the landmark judgments known colloquially as "Schrems I" and "Schrems€ II" which we will look at next.

Recent Techrights' Posts

Microsoft Windows Fell to All-Time Lows in Egypt This Summer, Vista 11 Adoption Decreases While GNU/Linux Increases
Vista 11 is going down rather than up
12 Hours Ago The Register MS Published a Fake (Paid-for) Article, But This One for a Change Did Not Promote a Ponzi Scheme
There are also Free software alternatives, but they don't pay The Register MS for "synthetic" so-called 'journalism'
 
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, August 27, 2025
IRC logs for Wednesday, August 27, 2025
Slopwatch: linuxsecurity.com, Slopfarms in Google News, and More
Some readers of ours end up sending us links that are from slopfarms, not realising those are slopfarms
Gemini Links 27/08/2025: Katrina Memories and Google Versus Software Freedom
Links for the day
Links 27/08/2025: Police Against Media Freedom in the UK, Energy-Hungry Countries Targeted by China
Links for the day
Links 27/08/2025: Microsoft Demoralises Staff With Slop Demands, Leaving Mastodon Explained
Links for the day
More People Need to Call Out and Put a Stop to Serial Sloppers
Unless slopfarms are stopped, people will read and share Microsoft propaganda made by chatbots
Gemini Links 27/08/2025: Headphones and Tartarus
Links for the day
Morale at Microsoft is Terrible (Proprietary Plagiarism Machines Have No Future, LLM Slop is a Bubble)
The slop sceptics/critics are going to have lots of "told you so" moments
GNOME "governance issues, staff reduction, etc." amidst Albanian whistleblowing and women trafficking
Notice the connection to Software Freedom Conservancy (SFC) and GNOME
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, August 26, 2025
IRC logs for Tuesday, August 26, 2025
Richard Stallman (RMS) Was Right About "Sideloading" in 1996
We now have computers that treat booting GNU/Linux like an act of "Sideloading"
Panama: Windows Down From 97% "Market Share" to Less Than 30%
In 2009, Windows was measured at 97.24% (compared to 62.32% right now or less than 30% if one also counts Android)
The UEFI 9/11 - Part I - Introduction to Impending Catastrophe (Microsoft Preventing People From Booting Non-Windows Systems)
eight-part series
Why Techrights is Slow Today (Bot Floods)
We don't know if those bots are connected to LLMs (we have not checked), but that is a possibility
Slopwatch: DDoS Slop, LinuxBSDos.com Spam, and Slopfarms in Google News, Including webpronews.com
Among the news we also found fakes, albeit not so much today
Links 26/08/2025: "Ballooning Debt" in France and "Transnational Repression in the UK"
Links for the day
Gemini Links 26/08/2025: Listening to Alcest and Google Doing Evil (Users Installing Software is "Sideloading" and Prohibited)
Links for the day
Links 26/08/2025: DNS Tampering and TikTok Layoffs
Links for the day
Microsoft's Windows "Market Share" Overestimated
Microsoft's income sources are shrinking
We Shall See...
My wife and I are hardly the first victims of Brett Wilson LLP
This New Determination on a Case Echoes the Modus Operandi of Microsoft's Serial Strangler vs Techrights (Its Online Decision/Judgment Says Truth and Public Interest Defend the Publisher)
Noel Anthony Clarke hopefully has enough money left to pay his victims, which include the publishers
Going Offline
There was life before the Net
The Register MS Has Apparently Shut Down Its Office
It is basically a fake address on the face of it
There Are Also Expectations of IBM Layoffs Very Soon With "Narrative Control."
Some of them mention Red Hat and how IBM failed to achieve anything substantial with that acquisition
After at Least Two Rounds of Mass Layoffs in August Microsoft Said to Have "September Layoff Confirmed - Performance Based"
Those "M5 level meetings" sound plausible
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, August 25, 2025
IRC logs for Monday, August 25, 2025