TL;DR: Using metadata, it is relatively easy to find out very intimate information about a person. Therefore it is good to assume that any data in a system is covered by the GDPR. (And if you want to see me go deeper into this, join the HoT69 conference on May 26th!)
GDPR is the new data privacy law that will come into force in the end of May 2018. It’s a neat law that in the best of worlds will help ordinary users to regain control over their data.
A central question for the GDPR is that all Personally Identifiable Information (PII) about a person is owned by that person, and must be protected. But what is PII?
Continue reading “The Air Conditioner Is Watching You”