bobingabout wrote:You know, Opt in could simply be a clause in the EULA stating that during the event of a crash, they upload data. If you don't accept, you can't play, but at least it's following the law.
Are you sure an EULA would be sufficient? I thought the whole point of GDPR was to remove the possibility of selling your soul via small print. Not that i personally care because i live in Germany where EULAs are not legally binding in 95% of the cases because they're not handed to you before you sign the contract
(=buy the game). Yes, that means EULA in the installer is invalid here.
EDIT: Found a fitting quote:
companies will no longer be able to use long illegible terms and conditions full of legalese, as the request for consent must be given in an intelligible and easily accessible form, with the purpose for data processing attached to that consent
Factorio developers clearly state EVERYTHING you need to know about privacy here
. You don't even
have to buy the game to know it.
The problem is not with any one software developer who might or might not handle the data properly. The problem is that all stored data eventually will be used for purposes it was not originally collected for. No programmer is employed at the same place for eternity. And even if they were, other people would still need unchecked access to it.
Okay, there are several problems here...
First, the data is stored by the company, not the programmer.
Second, the data is not at all likely to be used for purposes other than what it was originally collected for. (I mean, why would it be?)
Third, the data is not even "personal data" to begin with!! It's just anonymous crash logs! (I mean, on the website you provided, the keep saying "personal data" everywhere.)
And finally, who are these "other people" who need "unchecked access" to this data?
is a brand new European data protection regulation. As you seem to haven't even heared about it you are probably not even affected and thus all your points are in vain.
It is true that I haven't heard of it before someone brought it up on this forum. However, since I am a citizen of the EU, I am affected.
As for the specific things wube currently doesn't do i think this
might be a good start. (that's the official site
At the time of collecting their data, people must be informed clea rly
about at least:
- Who?: Wube Software
- Why?: Automated Feedback
- What?: There is no personal data being collected.
- Legal Justification... ?
- For how long will they keep the data... ?
- Who else has access?: No one.
- Will the personal data will be sent to... nope, it is not personal data.
- Can they have a copy of the data being sent?: Yes! In ".log" format!
- Do they have a right to file a complaint to... About what exactly?!
- Do they have a right to withdraw... YES! You can opt-out of this whole thing.
- The existence of an automated decision maker: Yes. The files are sent only if the game crashes.
There are some question marks because I don't know the answer to everything.
However, the initial assumption, that the data is personal and/or belongs to the person is incorrect to begin with, so I don't see how is that a violation.
To my understanding, "clea" and "rly" are not even English words, so this whole page is flawed anyway.