• jonne@infosec.pub
    link
    fedilink
    English
    arrow-up
    17
    ·
    6 hours ago

    It’s not like companies that use Linux don’t get breached either. Your personal data is in thousands of databases that have varying levels of security. Personal choices don’t affect any of that, regulations like GDPR are what’s needed.

    • Rivalarrival@lemmy.today
      link
      fedilink
      English
      arrow-up
      3
      ·
      edit-2
      5 hours ago

      GDPR has much the same problem: it can only actually be enforced against entities with a presence in Europe. When Europeans do international business, the GDPR only protects them if that foreign site has a business presence within Europe. When they have no bank accounts or business assets inside the EU, they are not subject to the GDPR.

      Even though the GDPR covers your side, it doesn’t always cover the other side.

      • jonne@infosec.pub
        link
        fedilink
        English
        arrow-up
        10
        ·
        edit-2
        5 hours ago

        That’s why I said “regulations like the GDPR”. The US and other blocs need similar regulations. Especially the US is important, as they’ve shown that they’re willing to stretch the size of their jurisdiction to sometimes absurd lengths.

        That’s usually a bad thing, but in this case that might be good.