AmericanThunder
Super Moderator
I’m sure most will be aware of the General Data Protection Regulation that became law in 2018?
Most will also know that even after Brexit the UK will continue to abide by GDPR even though aspects are likely to be re-written.
Now, I’m aware that this is a contentious post, but I feel that people should be aware.
The Covid-19 tracking app is in direct conflict with GDPR due to the data it tracks and the methods used for storing that data it gathers. It does not sufficiently protect people’s identity and does not seek permission for all the data it gathers.
More importantly is that users will NOT have the right to request their data is deleted as per GDPR regulation. One legal firm is challenging the tracking app on the basis that it “poses a great interference with fundamental rights and would require significantly greater justification to become lawful. That justification has not been forthcoming.”
Also note-worthy is that the app, regardless of being iOS or Android runs in a ‘special’ background mode that enables communications. To do this without requiring consent and without granting consent to the other data on your device poses a serious breach of your privacy.
In addition, “the UK governments announcements for sharing health data between the private and public sector appear to be flawed. This means such data sharing is potentially not incompliance with legal requirements.”
Now I’m not sure what announcements they are referring too at this time but for my own peace of mind I will be investigating.
This has all been confirmed by the head of the NCSC, Matthew Gould, (National Cyber Security Centre).
It appeared as part of my daily trawl through various security sites as I look for pending threats to my employer.
Use the app or not is your decision (for now) but at least you know. But before you make up your mind ask why the alternatives from Apple and Google, both of which by design could meet privacy requirements, have been ignored by the government.
Most will also know that even after Brexit the UK will continue to abide by GDPR even though aspects are likely to be re-written.
Now, I’m aware that this is a contentious post, but I feel that people should be aware.
The Covid-19 tracking app is in direct conflict with GDPR due to the data it tracks and the methods used for storing that data it gathers. It does not sufficiently protect people’s identity and does not seek permission for all the data it gathers.
More importantly is that users will NOT have the right to request their data is deleted as per GDPR regulation. One legal firm is challenging the tracking app on the basis that it “poses a great interference with fundamental rights and would require significantly greater justification to become lawful. That justification has not been forthcoming.”
Also note-worthy is that the app, regardless of being iOS or Android runs in a ‘special’ background mode that enables communications. To do this without requiring consent and without granting consent to the other data on your device poses a serious breach of your privacy.
In addition, “the UK governments announcements for sharing health data between the private and public sector appear to be flawed. This means such data sharing is potentially not incompliance with legal requirements.”
Now I’m not sure what announcements they are referring too at this time but for my own peace of mind I will be investigating.
This has all been confirmed by the head of the NCSC, Matthew Gould, (National Cyber Security Centre).
It appeared as part of my daily trawl through various security sites as I look for pending threats to my employer.
Use the app or not is your decision (for now) but at least you know. But before you make up your mind ask why the alternatives from Apple and Google, both of which by design could meet privacy requirements, have been ignored by the government.
Last edited: