submitted 11 months ago by Devjavu@lemmy.dbzer0.com to c/privacyguides@lemmy.one

24 comments fedilink hide all child comments

I live in the EU and the company I work at has been bought out by an american company. They now want me to sign a document that lets them transfer my personal data from my employer to the USA. They want my Name, full address and birthday. It says that they need this for some "compliance regulation" which includes the prevention of terrorism (the ol' classic). I feel uncomfortable giving them "explicit permission" to share this data even if it is done under "highest possible security measures" which, if they are not possible, might as well be none. I just started my apprenticeship, so they could fire me without providing a reason if I do not sign. Any help is well appreciated.

top 24 comments

sorted by: hot top controversial new old

[-] dizzy@lemmy.ml 45 points 11 months ago

It’s pretty normal for the company you work for to have your name, address and DOB.

I’m all for protecting your privacy and online anonymity to the max but when it’s literally the company you work for that need the most basic information, which they do need for a variety of reasons to keep you employed, that’s a little too far IMO.

[-] Devjavu@lemmy.dbzer0.com 6 points 11 months ago

Oh absolutely, but they are asking me to agree with them handing it over to the US government.

[-] 1rre@discuss.tchncs.de 28 points 11 months ago* (last edited 11 months ago)

My man if you think the US government don't already know (or at a minimum could easily find out) your name, age, address & where you work if you're not a goat farming hermit in Tibet or something then I have bad news for you

[-] Devjavu@lemmy.dbzer0.com 7 points 11 months ago

First, I am not a male. Second, I do believe the US gov has my data. Every single piece that is floating out there. I will still not share it with them, may there be the odd chance they do not yet have it.

[-] PeachMan@lemmy.world 11 points 11 months ago

Okay, then your other option is to refuse, and you will likely be fired. Good luck.

[-] merde@sh.itjust.works 6 points 11 months ago

it depends on where she lives. This is not the U.S. and it's not that easy to fire people with unjustifiable reasons.

She may not want her information to be stored on servers in U.S. and if she's fired for refusing to do just that, it may easily become a problem for the company.

[-] kurcatovium@lemm.ee 6 points 11 months ago

OP wrote about he//she just started apprenticeship which means company could sack him/her anytime. And without reason on top of it.

[-] merde@sh.itjust.works 3 points 11 months ago* (last edited 11 months ago)

if op can prove that her apprenticeship is terminated for refusing to share her personal information on U.S. servers, like i wrote, it would turn into a greater problem than keeping op's apprenticeship and respecting her European rights

did i just write the same comment with modified wording?

she just needs to "know her rights" and remind what her rights are

[-] kurcatovium@lemm.ee 2 points 11 months ago

Nope. At least not in my country. There is 3 months "apprenticeship" where either employer or employee can terminate the contract without any reasoning. One hour you're employed, the other you are not. Is it because boss did not like your face? Could be and it still would be legal... So the same also applies to refusing to share info to US, no need to prove anything to anyone, you're just fired.

[-] WhiteHotaru@feddit.de 12 points 11 months ago

Tax and social security is US government too. These are basic dates, that every employer needs. In Germany the data your employer needs is:

medical insurance company
birthdates of your children
marriage status
your birthdate
social security number
tax id

[-] nightdice@feddit.de 11 points 11 months ago

I think you're reading too much into this. They are likely legally required to hand over a list of their employees to the US government. Like, if sou really don't want them to do that, your only other option is quitting on the spot (or refusing and being let go, in case that makes a difference for things like unemployment benefits in your country).

[-] fraksken@infosec.pub 15 points 11 months ago

It's ok to provide your employer with your personal infornation. kudos to them for asking.

[-] WhatAmLemmy@lemmy.world 17 points 11 months ago

They're only asking because it's an EU legal requirement; not out of some sense of ethics or morality.

[-] TheDarkKnight@lemmy.world 8 points 11 months ago

Thing I hate most about Lemmy is users never miss a chance to shit on the US for absolutely everything. Your employer needs this info anywhere you work worldwide, this is not US abuse thing. Her company sold to a US company and they had the AUDACITY to ask for her basic information? Wow, US has REALLY gone too far this time, right comrades??

[-] WhatAmLemmy@lemmy.world 1 points 11 months ago

Oh I know. I had to do this myself and didn't complain cause I'm not a raging psychopath.

I'm just pointing out that the company wouldn't ask for your permission if it weren't legally required to do so.

[-] kurcatovium@lemm.ee 3 points 11 months ago

The company wouldn't even pay you if it wasn't required to, so...

[-] Devjavu@lemmy.dbzer0.com 1 points 11 months ago

Essentially yes

[-] LilB0kChoy@lemm.ee 11 points 11 months ago

This is required by GDPR. If the company wants to keep centralized employee records, likely where they are based in the US, GDPR requires them to get permission from EU citizens to do so.

The information they’re trying to store is public record, no government agency anywhere needs that provided to them.

[-] ramble81@lemm.ee 11 points 11 months ago

I know people have been stating it’s okay to do it (it really is), but you’re asking for help. I think you know what your two options are (give it to them, or quit) you just don’t want to or aren’t ready to hear them and are hoping for a magical third option which realistically doesn’t exist.

[-] Devjavu@lemmy.dbzer0.com 2 points 11 months ago

Yeah no, it is not that deep. I just did not know if I could not sign it. Appears I have to.

[-] Guilvareux@feddit.uk 9 points 11 months ago

Asking for info: What’s you specific concern regarding this information? Is it that data is accessible in the USA, you don’t trust the company?

[-] Devjavu@lemmy.dbzer0.com 5 points 11 months ago

Data accessibility in the US. I am sharing my data with the US government. I am just quite unsure of that.

[-] ZapBeebz_@lemmy.world 7 points 11 months ago

Everything they're asking for is pretty typical for the IRS (and probably a handful of other workplace-related departments). If you're really that uncomfortable giving them less information than is required to get a driver's license, then I think you know what your only choice is.

[-] smeg@feddit.uk 4 points 11 months ago

You could always just not do it any say nothing. It might just get forgotten, though more likely that eventually your manager will explicitly ask you to do it and they might have reasonable grounds for dismissal if you explicitly refuse. As others have said it's probably not the worst thing in the world compared to your job!

this post was submitted on 16 Oct 2023

44 points (100.0% liked)

Privacy Guides

16263 readers

33 users here now

In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.

This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.

You can subscribe to this community from any Kbin or Lemmy instance:

Learn more...

Check out our website at privacyguides.org before asking your questions here. We've tried answering the common questions and recommendations there!

Want to get involved? The website is open-source on GitHub, and your help would be appreciated!

This community is the "official" Privacy Guides community on Lemmy, which can be verified here. Other "Privacy Guides" communities on other Lemmy servers are not moderated by this team or associated with the website.

Moderation Rules:

We prefer posting about open-source software whenever possible.
This is not the place for self-promotion if you are not listed on privacyguides.org. If you want to be listed, make a suggestion on our forum first.
No soliciting engagement: Don't ask for upvotes, follows, etc.
Surveys, Fundraising, and Petitions must be pre-approved by the mod team.
Be civil, no violence, hate speech. Assume people here are posting in good faith.
Don't repost topics which have already been covered here.
News posts must be related to privacy and security, and your post title must match the article headline exactly. Do not editorialize titles, you can post your opinions in the post body or a comment.
Memes/images/video posts that could be summarized as text explanations should not be posted. Infographics and conference talks from reputable sources are acceptable.
No help vampires: This is not a tech support subreddit, don't abuse our community's willingness to help. Questions related to privacy, security or privacy/security related software and their configurations are acceptable.
No misinformation: Extraordinary claims must be matched with evidence.
Do not post about VPNs or cryptocurrencies which are not listed on privacyguides.org. See Rule 2 for info on adding new recommendations to the website.
General guides or software lists are not permitted. Original sources and research about specific topics are allowed as long as they are high quality and factual. We are not providing a platform for poorly-vetted, out-of-date or conflicting recommendations.

Additional Resources:

founded 1 year ago

MODERATORS

jonah@lemmy.jonaharagon.net