Welcome Back

Lozzer

Member
Messages
2,280
Have to say it's really nice to use on mobile, some nice touches, no need for Tapatalk I don't think.
 

Corranga

Member
Messages
1,219
Well GDPR in idea is probably a good thing, but the implementation is beyond laughable

C

This^ in spades.

Running a web company with half a million nhs records on our server, it’s been tough

I think it's definitely a good thing, if for no other reason, than it has made people think more about data and data security, and hopefully made the general public more aware too, as well as obviously protecting them a little better, even if that's limited to the shift to opt in, and having to supply a clear and easy opt out mechanism. I appreciate the implementation and roll out hasn't been ideal, but hopefully the ICO are sensible about it all, and big fines for breaches won't come until a bit further down the line.

I might be a little blind to what others have had to implement as we've been largely ready, and without much change, but then the spotlight is always a little bit on us with the NHS data we hold and use.

Anyway, this place is looking great, well done! :)
 

conaero

Forum Owner
Messages
34,593
In a nut shell what we did:

Evaluate all user databases and dump out of date records.

All data transfer and backups all now via sftp

Took out £1m cyber insurance with a team behind them who handle all data breach processes.

Notify all clients of database records we hold

Update privacy policy

Train staff

Put data processes in place going forward

With regards to this forum, migrate from Vbulletin software who provided no support or direction to Xenforo 2.07, dump all personal data, DOB, signatures, hobbies, interests, 3rd party contact info and force agreement to new Terms (next week)

I suppose it’s good to have a good clear out ant tidy all data.
 

CatmanV2

Member
Messages
48,547
I think it's definitely a good thing, if for no other reason, than it has made people think more about data and data security, /QUOTE]

Indeed. Sadly many of them are not thinking about it sensibly, or with any skill :(

C
 

Corranga

Member
Messages
1,219
I work at a University which partners with the NHS and holds and supplies medical records for research purposes. The bulk of our data is about 1.2 million (including deceased) people, totalling 300 million records+. We also hold lesser data for the entire Scottish population (plus deceased over the last few years) and some non-Scottish study data. We have ISO27001 (data security) which is basically a certificate that means we already think about these things on a large scale and have the culture to adopt data security change quickly.
Of course the 'research' thing is also a bit of a get out clause for a lot of what we do.

I smiled when I read the text in yellow at the top of the old board - to dump all personal data, sigs etc. I thought it was a rather inspired decision to what could otherwise be a complex problem. I'm registered for plenty of other forums that have done nothing (that can be seen anyway).
 

zagatoes30

Member
Messages
20,759
Agreed this is the only forum that I am on that has made any obvious attempt to deal with GDPR rules
 

conaero

Forum Owner
Messages
34,593
If the forums are outside the EU and mostly US based they are not governed so basically get away with it. We also stopped storing data and backups in the US due to The Patriots Act which in a nut shell means the US government can seize and look at any data held in its shores for national security purposes.

I also think the recent FaceBook/UK based Cambridge Analytica was a dump before the GDPR deadline to evade fines.
 

CatmanV2

Member
Messages
48,547
Not quite true, Matt. If you store data of EU citizens, you're liable for prosecution under GDPR.....

(At least that's what my memory is telling me, I may need to go and check)
C
 

D Walker

Member
Messages
9,827
Yep, I’m still getting loads of emails from all the people I did not reply to or resubscribe too and those I’ve never wanted to hear from, what I can’t understand is, why isn’t there a block all emails from this sender option...
 

CatmanV2

Member
Messages
48,547
Yep, I’m still getting loads of emails from all the people I did not reply to or resubscribe too and those I’ve never wanted to hear from, what I can’t understand is, why isn’t there a block all emails from this sender option...

There is. Just set a rule to move all messages from: email address > deleted items.

Job done

C
 

2b1ask1

Special case
Messages
20,220
Yep, I’m still getting loads of emails from all the people I did not reply to or resubscribe too and those I’ve never wanted to hear from, what I can’t understand is, why isn’t there a block all emails from this sender option...

There is in most email services it is just that these spam/spoof emaillers just create a new domain for each campaign so they bypass the blocking commands. Totally infuriating and I agree there should be a more efficient way of doing it.