If you thought GDPR is a joke, joke's on you

Mr Lucky said:
I thought they are already liable for infringement.
Click to expand...

Right now copyright holders can send a DMCA notice to have their work taken down from wherever, and then it's up to the platform to decide if the notices have merit (literally millions of them do not), and then the platform could be liable if they didn't act on it within a certain time. Usually, though, it's the individuals who use or share these copyrighted works who end up paying the fines and/or doing time. These new laws will make the platforms themselves directly liable for everything you and the other billions of people on the internet do, from your ISP to every website you visit. It will be very much in their vested interest to keep close tabs on everyone.
 
imno007 said:
Right now copyright holders can send a DMCA notice to have their work taken down from wherever, and then it's up to the platform to decide if the notices have merit (literally millions of them do not), and then the platform could be liable if they didn't act on it within a certain time. Usually, though, it's the individuals who use or share these copyrighted works who end up paying the fines and/or doing time. These new laws will make the platforms themselves directly liable for everything you and the other billions of people on the internet do, from your ISP to every website you visit. It will be very much in their vested interest to keep close tabs on everyone.
Click to expand...

I still don't see the difference.

Currently if a member of mey forum uploads something that they do not have the rights to, e.g. a photo, meme, audio then I take it down as soon as I am aware there is a copyright infringement.
]
Embedding or linking is a different matter of course. If somebody embeds a Youtube video, I am aware that Youtube have already checked for copyright and they either disallow or they allow with monetisation, depending on the rightsholders preferences. These I allow.

However embedding from another site who may not have that ability is different, I still don't know what for instance Soundcloud do in this regard.
 
Assadi said:
I really don't agree. The legal responsibility is to simply not lose or abuse the data, lol.

All you need to do to be GDPR compliant is essentially be a good person, update your privacy policy, and comply with deletion requests; it's not really all that hard. Safe harbor laws have nothing to do with harvesting unnecessary data and mistreating it.
Click to expand...

No, it's not that simple. Software often must change, privacy policies worth anything must be reviewed by someone qualified (which costs money), etc. No government regulation is without cost.

We've had fairly stringent data protection laws in Russia for more than a decade and it hasn't been an issue for us. The whole GDPR thing is blown way out of proportion.
Click to expand...

Federal Law No. 242-FZ
Service providers in Russia are required to retain your data for use by the government, hardly what I'd call data protection.
 
Mr Lucky said:
I still don't see the difference.
Click to expand...
Well, if there was no difference, what would be the need for new laws? So obviously there's a difference. We'll just have to wait and see how it plays out. All I'll say is that anyone who thinks it's a good idea for governments and big media conglomerates (who are paying off the politicians) to control the internet is probably in for a rude awakening.
 
Mr Lucky said:
Currently if a member of mey forum uploads something that they do not have the rights to, e.g. a photo, meme, audio then I take it down as soon as I am aware there is a copyright infringement.
Click to expand...
That is how it is right now. What is being proposed is to make the website owner directly liabel.
Eg. if if I have developed a software that I sell licenses for 10 $/each, someone uploads this to your forum and I detect that it is being downloaded multiple times from there I could request the lost license fees from you.
 
Kirby said:
That is how it is right now. What is being proposed is to make the website owner directly liabel.
Eg. if if I have developed a software that I sell licenses for 10 $/each, someone uploads this to your forum and I detect that it is being downloaded multiple times from there I could request the lost license fees from you.
Click to expand...

Yes, surely that's the way it is now, that's what I'm saying and why my temrs and conditions make it clear that members may not upload anything they don't own the rights to.
 
Yeah, who doesn't :-)
But that terms won't help you much if the proposal becomes active and your members ignored the terms.
 
Kirby said:
Yeah, who doesn't :)
But that terms won't help you much if the proposal becomes active and your members ignored the terms.
Click to expand...

Yes butb they do sometimes ignore the terms and we (me + moderators) remove the content. This is what I am getting at about what is so different, apart from people may be more aware to stop illegal filesharing and piracy on their watch which can be a good thing.
 
The risk is different. Right now, if there is pirated content on your site that you are unaware of: You get a notice, remove it and you're done.
Financial Risk = More or less 0

Not so if you are fully liable, if you (or your team) miss pirated content the copyright hould could demand compentation for lost license fees.
Financial Risk = ?
 
Mr Lucky said:
Yes butb they do sometimes ignore the terms and we (me + moderators) remove the content. This is what I am getting at about what is so different, apart from people may be more aware to stop illegal filesharing and piracy on their watch which can be a good thing.
Click to expand...
The problem is that just as there are millions of DMCA notices that are sent out each year that are either bogus or sent in error - which frequently includes people sending out notices on copyrighted works they themselves or their various partners host - there will also be millions of "gray" items and contested works caught up in all these filters and detection algorithms that will result in a gazillion false-positives and mountains of litigious lawsuits that most small operators can't afford.
 
ftsservice said:
No, it's not that simple. Software often must change, privacy policies worth anything must be reviewed by someone qualified (which costs money), etc. No government regulation is without cost.
Click to expand...

It is that simple, actually. You guys had TWO WHOLE YEARS to update your software. The problem is that everyone forgot about it until the last minute. That is a personal problem; not a problem with the GDPR itself.

I implemented the data importing and exporting in our MMORPG in <24 hours, added anonymization features when I was bored over the weekend, and implemented a rough version of the latest XenForo patches before they were released. All that took probably about like 6 hours of development time.

The hardest process was writing the privacy policy and actually educating all the staff about handling data correctly.

If you're genuinely having trouble getting those basic things implemented with two years (or more, honestly) of notice, you probably have a monstrously large company and can afford to actually hire people to do this.

Otherwise, sorry to be blunt, but you slacked off and are paying the price. The GDPR is genuinely a good set of laws and most people were just lazy and are now upset.

ftsservice said:
Federal Law No. 242-FZ
Service providers in Russia are required to retain your data for use by the government, hardly what I'd call data protection.
Click to expand...

You literally cherry picked the amended addition added in 2014. The original law is more than a decade old and IS genuinely about data protection. Russia has had better data protection laws than most of the world up until recently. Feel free to read No. 152-FZ.

The point, though, is not that Russia is better than anyone else; don't worry, I'm well aware we have our problems too.

The point is we have had very strict laws that required you to carefully handle any sort of personal information (names, birthday, address, social status, education, profession, race, religious beliefs, political opinions, etc) and a lot of the data processing policies that companies implemented in Russia are pretty much directly translatable to the GDPR.

My point is that it hasn't been an issue for our companies to treat sensitive information that belongs to your fellow countrymen with the slightest amount of respect.

1. Don't store stuff you don't need
2. Let people know who all is involved in data processing
3. Let people know WHY you need that data
4. While you still have that data, be careful with it
5. When someone requests you delete their sensitive information, delete it if it isn't absolutely necessary (e.g., not ban information, not fraud information, etc)
6. When data becomes unnecessary, delete it
 
Last edited:
@Assadi

It's a lot more complex than simply 'implementing'. It's also understanding GDPR. As someone who is doing GDPR implementations, there are a lot more complexities and nuisances than simply 'black and white' as described above.
 
ManagerJosh said:
@Assadi

It's a lot more complex than simply 'implementing'. It's also understanding GDPR. As someone who is doing GDPR implementations, there are a lot more complexities and nuisances than simply 'black and white' as described above.
Click to expand...

Sure, there's a lot to know. But, again, it's not all that hard for a small company to do the TL;DR version of it and they'll generally be fine. Larger companies that are actually in danger can easily afford to pay their lawyers to actually go through the law.

And, again, the main point that I'm trying to get across is this law was implemented more than two years ago. It's really not the European Union's fault that everyone forgot until last week.
 
With regards to copyright how would it work with music files, would royalties have to be paid to the artists every time a track is played via your website?
Just a thought
 
Mr Lucky said:
Yes, surely that's the way it is now, that's what I'm saying and why my temrs and conditions make it clear that members may not upload anything they don't own the rights to.
Click to expand...
Terms and conditions do not have any real legal weight. You can put whatever you want there, but it doesn't absolve you of any responsibility.

I think its a good thing. It might end Facebook and similar social media ****posting websites nonsense because they will be liable for anything their users post there. No more content cloning websites that have been a problem for many website owners.

But its just a proposal at this point. There are also politicians that want to ban diesel in EU. Politicians can propose anything, doesn't mean it has a chance of becoming law.
 
Arty said:
Terms and conditions do not have any real legal weight. You can put whatever you want there, but it doesn't absolve you of any responsibility.
Click to expand...

I realise that but (as many users do obey the T & Cs) what it means is I get less of those posts, and when I do get them posting material they don't have the rights to, then they get eductaed and don't do it agin. or get banned.
 
Mr Lucky said:
I realise that but (as many users do obey the T & Cs) what it means is I get less of those posts, and when I do get them posting material they don't have the rights to, then they get eductaed and don't do it agin. or get banned.
Click to expand...
That assumes people do read T&C. Which they don't. But yep, good tool for dealing with misbehaving users.
 
Arty said:
That assumes people do read T&C. Which they don't. But yep, good tool for dealing with misbehaving users.
Click to expand...

No but they get to know when posts are removed and the reason given is uploading copyright material against T & C. Plus if it's not in the T & C the users get more disgruntled because it seems more random when you just delete their posts or remove links. It's better to show you have good reason to and are just applying your forum rules.
 
Last edited:
.
Assadi said:
It is that simple, actually. You guys had TWO WHOLE YEARS to update your software. The problem is that everyone forgot about it until the last minute. That is a personal problem; not a problem with the GDPR itself.
Click to expand...

You're making huge assumptions about someone's situation you don't know the details of.

I am in the USA, my forums are in the USA and most of my users are in the USA. For two years small businesses like mine were assured it didn't impact us unless we targetted EU users. Two months ago Google tells us we must comply if we want to continue to use their tools so they can be compliant. The first few weeks after this there wasn't even a clear indication from Google or on forums such as TAZ what needed to be done in order to be in full compliance.

I implemented the data importing and exporting in our MMORPG in <24 hours, added anonymization features when I was bored over the weekend, and implemented a rough version of the latest XenForo patches before they were released. All that took probably about like 6 hours of development time.
Click to expand...

Well good for you, but everyone's situation isn't the same. Any time I spent on this I had to take away from billable time with my clients. I'm not implementing GDPR on my sites while being paid for it by an employer, and spending time in my off hours with my wife and children is a priority.

If you're genuinely having trouble getting those basic things implemented with two years (or more, honestly) of notice, you probably have a monstrously large company and can afford to actually hire people to do this.
Click to expand...

Again, you're making assumptions. I have no "trouble" getting these things done. It does, however, take time (which is money) from other tasks, especially with software like Xenforo which waited until two weeks before GDPR to add features for it (and it still does not fully address the issues I need addressed with GDPR). I started spending time prior to that writing my own plugin to address GDPR... only to have wasted my time when XF finally did something.

Otherwise, sorry to be blunt, but you slacked off and are paying the price. The GDPR is genuinely a good set of laws and most people were just lazand are now upset.
Click to expand...

Taking personal shots at me is uncalled for.
 

Similar threads

Alternadiv
If you have $2,000 to spend to improve your site, what would you use it on?
2
Replies
30
Views
3K
KensonPlays
KensonPlays
Hotfix
Fake it till you make it – a take on fake users
2
Replies
34
Views
4K
Dad.
D
cowgod
XF 2.0 How do you assign a phrase to an add-on?
Replies
5
Views
604
Ozzy47
Ozzy47
CZ Eddie
Guidelines to stay off hate lists/blocked sites? And how to check if you are on one?
Replies
11
Views
851
CZ Eddie
CZ Eddie
J
  • Question Question
XF 2.1 Can you NOT create an admin on a fresh install intended to do a Vbulletin import?
Replies
2
Views
379
joshg
J
Top Bottom