General Data Protection Regulation (“GDPR”)

44 readers

3 users here now

Everything related to the #GDPR is discussed here. This is the first and only community specifically for GDPR topics which is decentralized and outside of walled-gardens. #EDPB recommendations and guidance can and should also be discussed here.

For the moment, chatter on the similar California Consumer Privacy Act (CCPA) could be discussed at least until the volume of messages compels us to split it into a separate community.

founded 9 months ago

MODERATORS

freedomPusher@sopuli.xyz

An EU citizen outside of the EU accesses an EU website via Cloudflare → GDPR violation or loophole? (sopuli.xyz)

submitted 8 months ago* (last edited 8 months ago) by freedomPusher@sopuli.xyz to c/gdpr@sopuli.xyz

0 comments fedilink hide all child comments

The #GDPR protects everyone inside the EU (regardless of citizenship) + also EU citizens who are outside of the EU.

So what happens when you have:

EU citizen outside the EU → Cloudflare (the closest server) → EU website

CF’s closest server would usually not be in the EU in this case. The GDPR generally bans personal data being stored outside the EU. As far as anyone knows this is data in transit not storage. But we really don’t know that. We don’t know what Cloudflare collects and stores.

In principle, European websites that use Cloudflare should have the proxy server restricted to EU locations and under EU regulation. Correct?

no comments (yet)

sorted by: hot top controversial new old

there doesn't seem to be anything here