Andy Wang
@an.dywa.ng
Reposted by Andy Wang
These charts/maps are always laundry lists of "nice to have" things equally weighted with much more critical things like HRT access/gatekeeping
May 14, 2025 at 8:28 AM
These charts/maps are always laundry lists of "nice to have" things equally weighted with much more critical things like HRT access/gatekeeping
Mass surveillance must be treated as chemical and biological weapons: you don’t get to have it in the first place, regardless of how strong your democracy, laws, courts are at the current point in time
April 4, 2025 at 9:00 AM
Mass surveillance must be treated as chemical and biological weapons: you don’t get to have it in the first place, regardless of how strong your democracy, laws, courts are at the current point in time
I agree with your sentiment but I do not believe this is a possible consequence under GDPR as it stands. The Privacy Framework concerns international transfer, not transfer to EU, and there is no further provision that says “no data transfer to EU entities that might hand data away”
March 3, 2025 at 11:59 PM
I agree with your sentiment but I do not believe this is a possible consequence under GDPR as it stands. The Privacy Framework concerns international transfer, not transfer to EU, and there is no further provision that says “no data transfer to EU entities that might hand data away”
If that happens then AWS can get fined 4% of the annual revenue. Like all penalties, this can only happen after the fact. But there’s nothing in GDPR that prohibits AWS Europe from operating just because the US has capabilities. Even if there were, it can only be enforced after a violation.
March 3, 2025 at 11:46 PM
If that happens then AWS can get fined 4% of the annual revenue. Like all penalties, this can only happen after the fact. But there’s nothing in GDPR that prohibits AWS Europe from operating just because the US has capabilities. Even if there were, it can only be enforced after a violation.
Since AWS Inc and AWS Europe are separate legal entities, accessing data would count as international transfer so yes it would invoke requirements such as adequacy decision. However I’m fairly confident that AWS is built in a way that accessing customer data is not something that just simply happens
March 3, 2025 at 11:14 PM
Since AWS Inc and AWS Europe are separate legal entities, accessing data would count as international transfer so yes it would invoke requirements such as adequacy decision. However I’m fairly confident that AWS is built in a way that accessing customer data is not something that just simply happens
AWS EU regions are owned by a legal entity in Luxembourg. Granted it is a wholly owned subsidiary of AWS Inc, but for GDPR purposes the ultimate owner doesn’t matter.
March 3, 2025 at 8:56 PM
AWS EU regions are owned by a legal entity in Luxembourg. Granted it is a wholly owned subsidiary of AWS Inc, but for GDPR purposes the ultimate owner doesn’t matter.