GDPR?

Forum for all bug reports relating to the 2018 Early Access phase of A tractor
Post Reply
Morvis
Posts:189
Joined:Thu Jan 14, 2016 1:57 am
GDPR?

Post by Morvis » Fri Aug 17, 2018 5:01 pm

Had a new player ask if the game is GDPR compliant. Know anything abt that?

User avatar
Mit
Site Admin
Posts:260
Joined:Thu Oct 29, 2015 11:19 pm
Location:UK
Contact:

Re: GDPR?

Post by Mit » Sat Aug 18, 2018 12:49 am

i'd say 'yes'. It doesnt collect any identifiable information.

VDZ
Posts:63
Joined:Sat Aug 18, 2018 9:21 pm

Re: GDPR?

Post by VDZ » Mon Aug 20, 2018 7:27 pm

Not true. GDPR is extremely broad, which is a large part of why it's so controversial.
GDPR wrote:‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person
Anything unique to a person that could be cross-referenced with another data source to identify that person is 'personal data' (identifiable information). For example, I use my nickname 'VDZ' in other places as well, therefore any information from your databases associated with my name can be associated with other data about me if that other data also has my nickname as identifier, and the more such identifiers you have the worse it gets (add the IPs I log in from and you'll be able to 100% distinguish me from the very few other people using the name 'VDZ'). Personal data includes nicknames, e-mail addresses (you can enter them in in-game for e-mail notifications), Steam IDs and IP addresses. For these kinds of information, you need to properly document how/where it's stored and who has access to it, and if anybody sends you a formal request to delete any data you have about them you need to be able to do so (within reason). If any of this leaks (for example, a game exploit lets people see other players' e-mail addresses) it needs to be formally reported and all affected players must be told about it.

User avatar
Mit
Site Admin
Posts:260
Joined:Thu Oct 29, 2015 11:19 pm
Location:UK
Contact:

Re: GDPR?

Post by Mit » Mon Aug 20, 2018 11:08 pm

I'd still say 'yes'.

Post Reply