securityzed

securityzed contains opinions and anecdotes about INFOSEC issues. Views expressed herein belong solely to the contributors. Not to be taken as professional advice, or internally.

  • Training Courses
  • RSS
  • Blog
  • About
  • Contact/Subscribe/Support
  • Podcasts
  • Books/Pubs

Realization

July 01, 2019 by Ben Malisow in Blog Entry

It just occurred to me: when waitstaff takes your ID for the express purpose of verifying your age (for alcoholic beverages), this violates the GDPR Collection Limitation principle— the ID conveys a lot more information than is necessary to confirm identity (the photo) and the age (birthdate).

Hmmmm…..

July 01, 2019 /Ben Malisow
badsec, privacy, Law
Blog Entry
  • Newer
  • Older

Powered by Squarespace