The Journal and logs are mostly irrelevant here. You can see the commander names in game when you meet someone, and you can tie that to IP addresses using things like your router firewall logs, or your operating system's network management tools. Yes, the Journal/logs make it easier to extract this information, but you could do it without them.Sorry, thats wrong. In the journal you receive at least the commandernames when you play in open and have the honor to meet one (i know, thats not often the case right now), and in the log/extended log you have a list of P2P-Connections including IP´s of your instance.
Article 6, compare 1a with 1b or 1f, for justifications for processingThank you! Which articles apply to point 5?
I think this would come under the personal/household exemption to start with, if you're making personal recordingsWould GDPR in its current form prevent such? Or does it contain provisions towards sharing information about general bad behaviour?
GDPR = German Democratic People's Republic .... the old East Germany ...... oh the irony !![]()
A nickname and email adress don't make for identifiable natural people. Don't log the IPs and don't keep a book of grudges and you're good. No need to overthink this.
So, the question then becomes: is it legitimate for Frontier to share (in-game) names and IP addresses with other players for the purposes of providing a multiplayer internet game ... to which the answer should be a pretty clear "yes". Their privacy policy explicitly covers this issue anyway, and I assume their legal advice is better than mine.![]()
I have another question. This is a little off topic This was something that happened a long time ago in my elite history.
I had wanted to get involved in powerplay with a certain power but due to my affiliation with a particular player group I wasn't allowed.
I had shared the logs of our communication (it was in text) as to why I wasn't allowed. This apparently wasn't taken very well by the admin in question.
We had gotten onto a voice channel one day with a representative of a player group and the admin/moderator of the powerplay operation's group to sort this out.
Apparently the reason for this was to ensure that no text logs could be made. Learning of this, I had quickly started recording the conversation because I believe that a person that would go to lengths to avoid being cited wants to say something they know would paint them in a bad light. Within it contained what I would deem flagrant toxicity from these leaders of powerplay operations and player group.
At the time, due to the international nature of the voice communication, It is unclear legally whether a one party notification or a two party notification would apply. That means, do both side need to know that it's being recorded or just one side? It's one party for mine and where I was at the time, and two party for their country of origin at the time but only if it's for businesses. I never did find out how it applied to natural people.
I believe I was in the right to be allowed to recorded my specific conversations with these people for future reference without notification (that means telling them that they're being recorded) because it was an international call.
Here's the thing, I had an audio file with evidence of generally terrible and bullying behaviour from specific leaders of powerplay. Under GDPR, would a voice recording be considered personal information?
And I would have been able to share it for the purpose to shedding light on an instance of bullying and toxicity that I had personally bore witness to?
Would GDPR in its current form prevent such? Or does it contain provisions towards sharing information about general bad behaviour?
I have not shared the file in its entirety and would likely never do so.
I´m not sure here.
We have similar issues with a - well - very common CRM-System that is in use worldwide (working for a company with 4 million customers and 60.000+ employees), there are similar issues and legal said: Nope, pls implement technical measures here (encryption/masking). Also 3rd-party in foreign countries (out of europe) were a big issue (Isnt FD using AWS? And Elite is running almost worldwide?).
Example: One chinese d00d is scanning logfiles and builds a database with commandernames and ip-adresses. Is it allowed? Yes, Frontier does not prohibit that in their EULA. And GDPR says: Data transmission to a land outside of europe = only allowed when the same measures apply as in europe. Don´t see thatSame is with AWS - even if the servers are running in Europe, they have a follow-the-sun-policy when it comes to technical issues, so its possible that an indian technician checks a european server = problem. I don´t like that, but that´s how all big companies have to deal with in the past 12 months. No idea how many pages of contracts I have written in the last weeks, must have been 2000 pages or so.
I hope all this crap does not apply to computer games, I have yet to find the exception for games in the GDPR.
I´m 100% certain they have at least to work on their logs and the journals, but that is not my decision (but as we all know: there´s always "one idiot" who tests that and files a lawsuit).
Sorry excuse me so angry, but his post, begin to be of doubtful credibility for my criteria.
I checked 1 hour ago that frontier encrypts data correctly, that does not provide ip, email or any data that is possible to another comdr know without explicit consent. I've been to open, wing, solo (mode only) and private group and ok for Frontier
I refer to my post n33, for possible specific technical revision.
Disculpa me exprese asi de enojado,pero sus post, empiezan a ser de dudosa credibilidad para mi criterio.
He comprobado hace 1 hora que frontier encripta datos correctamente, que no facilita ip, email ni ningun dato que sea posible a otro comdr saber sin el consentimiento explicito. He estado en open, en wing, solo (mode onlu) y private group y ok por Frontier
Remito a mi post n33, para posible revison tecnico especifico
It's not wiretapping. I'm not a third party hacking into someone else's call. I'm one of the participant of the call. I'm recording my personal conversation with someone else. It's not illegal to record your personal conversations. This is where you should look up two party notification and one party notification and how it applies to an international call with regards to personal use.Lol? Are you for real? Don't you find it a bit weird to wiretap personal conversations? And what for? Like you can't just take pictures of strangers and use them at your leisure you can't just record personal conversations. And then go on a public forum and announce you just did so.
The Journal and logs are mostly irrelevant here. You can see the commander names in game when you meet someone, and you can tie that to IP addresses using things like your router firewall logs, or your operating system's network management tools. Yes, the Journal/logs make it easier to extract this information, but you could do it without them.
So, the question then becomes: is it legitimate for Frontier to share (in-game) names and IP addresses with other players for the purposes of providing a multiplayer internet game ... to which the answer should be a pretty clear "yes". Their privacy policy explicitly covers this issue anyway, and I assume their legal advice is better than mine.
Article 6, compare 1a with 1b or 1f, for justifications for processing
Article 7 has most of the conditions to be met for using 6.1.a
Some of the other articles sometimes work differently if consent is the justification under 6.1
I think this would come under the personal/household exemption to start with, if you're making personal recordings
It would get rather more complicated if an organisation were to be processing the data (because you gave them that information) - Article 14 could be interesting - and my non-legal advice would be "don't".
As regards "sharing information about general bad behaviour" you might find the precedent described at https://www.bristows.com/news-and-p...ormation-can-an-employer-process-and-disclose relevant as example of the difficulties you can get into, though it's not an exactly parallel situation.
That's data of the game, only of your character, and you only receive it from anyone else. In order without commentsLogfiles/Journals are not encrypted.
That's data of the game, only of your character, and you only receive it from anyone else. In order without comments,
E
I´m not sure here.
We have similar issues with a - well - very common CRM-System that is in use worldwide (working for a company with 4 million customers and 60.000+ employees), there are similar issues and legal said: Nope, pls implement technical measures here (encryption/masking). Also 3rd-party in foreign countries (out of europe) were a big issue (Isnt FD using AWS? And Elite is running almost worldwide?).
Example: One chinese d00d is scanning logfiles and builds a database with commandernames and ip-adresses. Is it allowed? Yes, Frontier does not prohibit that in their EULA. And GDPR says: Data transmission to a land outside of europe = only allowed when the same measures apply as in europe. Don´t see thatSame is with AWS - even if the servers are running in Europe, they have a follow-the-sun-policy when it comes to technical issues, so its possible that an indian technician checks a european server = problem. I don´t like that, but that´s how all big companies have to deal with in the past 12 months. No idea how many pages of contracts I have written in the last weeks, must have been 2000 pages or so.
I hope all this crap does not apply to computer games, I have yet to find the exception for games in the GDPR.
I´m 100% certain they have at least to work on their logs and the journals, but that is not my decision (but as we all know: there´s always "one idiot" who tests that and files a lawsuit).
Thats exactly the problem. FD could be in the position to say "Hey, its P2P, we don´t know what connections you have", but that could also lead to problems.
Sure - but that's a situation where IP addresses are being recorded for legitimate internal purposes, presumably don't need to be shared with other customers, and encrypting when stored is just good practice there.We have similar issues with a - well - very common CRM-System that is in use worldwide (working for a company with 4 million customers and 60.000+ employees), there are similar issues and legal said: Nope, pls implement technical measures here (encryption/masking).
Chinese d00d is an individual so out of scope of the GDPR, though.Example: One chinese d00d is scanning logfiles and builds a database with commandernames and ip-adresses. Is it allowed? Yes, Frontier does not prohibit that in their EULA. And GDPR says: Data transmission to a land outside of europe = only allowed when the same measures apply as in europe.
How does GDPR affect informal playergroups like those that run PMFs?
Sure - but that's a situation where IP addresses are being recorded for legitimate internal purposes, presumably don't need to be shared with other customers, and encrypting when stored is just good practice there.
Chinese d00d is an individual so out of scope of the GDPR, though.
As above, you can get this information without the logfiles, so under this interpretation FDev would be prohibited from matching EU players with non-EU players at all.