L’UE prevede di allentare le leggi GDPR e i vincoli sull’intelligenza artificiale in un cambiamento importante – DW – 18/11/2025

Dogshit politicians

Well, that’s not good at all. Opt-out data collection schemes are the same as no protection, essentially, as companies will make it borderline impossible to make such a request.

The startup I worked at, we were fully GDPR compliant with fairly minimal extra effort, but we had an easy time doing it because we were already implementing best practices in infosec. Companies complaining about the current GDPR should be viewed with suspicion as they’re either doing shady stuff with your data or have horrible security practices.

I really hope this doesn’t go through.

TLDR:

>- According to the leaked document, the definition of personal data will be narrowed, allowing companies to process such data to train AI models “for purposes of a legitimate interest”.

>- The now-familiar pop-ups asking a user whether they accept cookies will disappear if the proposal becomes law, with more companies able to harvest user data without consent, forcing the user to ask to remove their data after the fact.

>- While individuals’ direct answers to questions on subjects like sexuality, religion or health will still be protected, the scope for defining sensitive data will narrow. Data gleaned from non-direct questions (so browsing habits, for example) would not have the same protections as it previously did.

>- What happens next? Commission President Ursula von der Leyen will require the approval of both the EU parliament and member states to get the document into law.

I have two questions: how hard is it really for startups to protect people’s personal data and is it the implementation that is hard or the fact that some companies rely on said data to make a profit?

What a joke

So we finally get all Apple features that are now not working in EU?