220
submitted 8 months ago by JRepin@lemmy.ml to c/privacy@lemmy.ml

cross-posted from: https://lemmy.ml/post/13035348

Following its investigation, the EDPS has found that the European Commission (Commission) has infringed several key data protection rules when using Microsoft 365. In its decision, the EDPS imposes corrective measures on the Commission.

The EDPS has found that the Commission has infringed several provisions of Regulation (EU) 2018/1725, the EU’s data protection law for EU institutions, bodies, offices and agencies (EUIs), including those on transfers of personal data outside the EU/European Economic Area (EEA).

top 18 comments
sorted by: hot top controversial new old
[-] ShortN0te@lemmy.ml 64 points 8 months ago

Imagine, all the money they are throwing to microsoft put towards a few teams that develops actively on open source projects to support independent and open source infrastructure.

[-] jlow@beehaw.org 7 points 8 months ago* (last edited 8 months ago)

PublicMoneyPublicCode!

[-] CowsLookLikeMaps@sh.itjust.works 49 points 8 months ago

Joplin, LibreOffice, and NextCloud peeking in from around the corner (¬‿¬)

[-] admiralteal@kbin.social 9 points 8 months ago

Man I wish Obsidian were open source. Or that someone would just fully knock them off. It's the only notetaking app I've ever used that didn't feel like it was constantly fighting with me. Joplin just doesn't do it for me, especially with those jex files rather than just storing stuff in plain text.

[-] Ephera@lemmy.ml 4 points 8 months ago

I've heard Logseq is comparable to Obsidian and it's open-source. It is the corporate kind of open-source, though, so no guarantees that it stays as such...

[-] possiblylinux127@lemmy.zip 24 points 8 months ago
[-] BearOfaTime@lemm.ee 26 points 8 months ago* (last edited 8 months ago)

Right?

The incompetence in the IT world is staggering. In the 90's I complained about the direction SaaS would take us, and my peers just dismissed me as paranoid.

Seriously, how do these people not see the issues with out sourcing your data/software hosting?

It's especially frustrating since it takes more network bandwidth to outsource this stuff, which is more risky (in my opinion - according to how I measure risk) than keeping it in-house, and with that much bandwidth you could easily support all your remote users anyway.

(Of course I'm comparing simple network/cloud provider outage risks against the local data risks and management, it's not really as simple as I'm making it. I just prefer the "keep as much local as you can" is better than distributing data, since it's going to be local anyway, meaning you're never free of those risks).

[-] Evil_Shrubbery@lemm.ee 14 points 8 months ago

Ohhh, interesting. And nice.

It will be a confusing few years but transition away from big corp cloud services is an important thing.

I really hope they eventually push self-hosting onto regulated entities as well.

[-] shadycomposer@lemmy.world -2 points 8 months ago

I don’t believe governments are capable of hosting anything securely though.

[-] Evil_Shrubbery@lemm.ee 10 points 8 months ago* (last edited 8 months ago)

Yeah, I mean, neither are corporations, especially when there is no oversight, no sanctions, and no real alternatives for regular workers.

Also not sharing data for profit or lending it for private sector AI training. And it's not like developed countries get their data stolen as regularly as corps do. And eg financial regulators are pretty strict on data security (CISO things) + a lot of new directives concerning data are just about to come in force.

[-] vsis@feddit.cl 3 points 8 months ago

Keys and tokens will be shared securely via singaporean hotels wifi.

[-] a4ng3l@lemmy.world 1 points 8 months ago

There goes my week and prolly the whole year… I look forward the internal assessment at my job but chances are local authorities will follow on this and the implications are crazy. At first read it puts the bars sooooo high on several principles that basically no existing IT intensive business will have a chance to survive similar audit.

[-] troed@fedia.io 19 points 8 months ago

The EU has made it very clear for a while now that European organizations cannot rely on American clouds or SaaS-providers. It's perfectly possible to go without - it just means a lot of IT-orgs who have relied on having a career "in Microsoft" need to update their skillset.

this post was submitted on 11 Mar 2024
220 points (97.0% liked)

Privacy

32159 readers
232 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS