Does GDPR cover the collection of data by websites that crawl the web and resell user data Planned maintenance scheduled April 23, 2019 at 23:30 UTC (7:30pm US/Eastern) Announcing the arrival of Valued Associate #679: Cesar Manara Unicorn Meta Zoo #1: Why another podcast?Contract necessary for the most basic processing under GPDR?Under the GDPR, should transaction data be deleted on account deletion or on user request?GDPR impact on genealogy website / uncontrolled user dataWill GDPR (EU law) make bad practices in security illegal?Does GDPR apply to internal employees data?Does keeping an MD5 hash of user data violate GDPR?GDPR and personal data that gets crawled and ends up on other websitesGDPR - is user social ID personal dataDoes my Personal Web App need to comply to GDPR?Replication of user data a violation of GDPR

What's the connection between Mr. Nancy and fried chicken?

Are there any irrational/transcendental numbers for which the distribution of decimal digits is not uniform?

How to show a density matrix is in a pure/mixed state?

Understanding piped commands in GNU/Linux

Can two people see the same photon?

How can I prevent/balance waiting and turtling as a response to cooldown mechanics

Improvising over quartal voicings

IC on Digikey is 5x more expensive than board containing same IC on Alibaba: How?

As a dual citizen, my US passport will expire one day after traveling to the US. Will this work?

How can I introduce the names of fantasy creatures to the reader?

Table formatting with tabularx?

How to create a button that adds InputFields when clicked?

Combining list in a Cartesian product format with addition operation?

Is there a canonical “inverse” of Abelianization?

Who's this lady in the war room?

Can gravitational waves pass through a black hole?

Is honorific speech ever used in the first person?

Unicode symbols with XeLaTeX and Lato font

Where did Ptolemy compare the Earth to the distance of fixed stars?

Does GDPR cover the collection of data by websites that crawl the web and resell user data

Why did Bronn offer to be Tyrion Lannister's champion in trial by combat?

Changing order of draw operation in PGFPlots

geoserver.catalog.FailedRequestError: Tried to make a GET request to http://localhost:8080/geoserver/workspaces.xml but got a 404 status code

Random body shuffle every night—can we still function?



Does GDPR cover the collection of data by websites that crawl the web and resell user data



Planned maintenance scheduled April 23, 2019 at 23:30 UTC (7:30pm US/Eastern)
Announcing the arrival of Valued Associate #679: Cesar Manara
Unicorn Meta Zoo #1: Why another podcast?Contract necessary for the most basic processing under GPDR?Under the GDPR, should transaction data be deleted on account deletion or on user request?GDPR impact on genealogy website / uncontrolled user dataWill GDPR (EU law) make bad practices in security illegal?Does GDPR apply to internal employees data?Does keeping an MD5 hash of user data violate GDPR?GDPR and personal data that gets crawled and ends up on other websitesGDPR - is user social ID personal dataDoes my Personal Web App need to comply to GDPR?Replication of user data a violation of GDPR










1















I have found that a lot of my personal info is now available on a bunch of websites that collect data and resell it.
I'm talking about those 'find anything about anyone' websites.



A lot of the data is also inaccurate.



Since a lot of these companies are American and I have lived my life half US / half EU and I'm now an EU resident, I was wondering:



  • does the GDPR applies to them?

  • does the GDPR applies to data they claim was 'public', but I see that this is not really true?

  • What's the responsibility of search engines, like Google, in indexing and promoting that content. As they seem to have a 'contact the webmaster' approach to it, is it possible to get the content (at the minimum the inacurate one) removed from their index?









share|improve this question


























    1















    I have found that a lot of my personal info is now available on a bunch of websites that collect data and resell it.
    I'm talking about those 'find anything about anyone' websites.



    A lot of the data is also inaccurate.



    Since a lot of these companies are American and I have lived my life half US / half EU and I'm now an EU resident, I was wondering:



    • does the GDPR applies to them?

    • does the GDPR applies to data they claim was 'public', but I see that this is not really true?

    • What's the responsibility of search engines, like Google, in indexing and promoting that content. As they seem to have a 'contact the webmaster' approach to it, is it possible to get the content (at the minimum the inacurate one) removed from their index?









    share|improve this question
























      1












      1








      1








      I have found that a lot of my personal info is now available on a bunch of websites that collect data and resell it.
      I'm talking about those 'find anything about anyone' websites.



      A lot of the data is also inaccurate.



      Since a lot of these companies are American and I have lived my life half US / half EU and I'm now an EU resident, I was wondering:



      • does the GDPR applies to them?

      • does the GDPR applies to data they claim was 'public', but I see that this is not really true?

      • What's the responsibility of search engines, like Google, in indexing and promoting that content. As they seem to have a 'contact the webmaster' approach to it, is it possible to get the content (at the minimum the inacurate one) removed from their index?









      share|improve this question














      I have found that a lot of my personal info is now available on a bunch of websites that collect data and resell it.
      I'm talking about those 'find anything about anyone' websites.



      A lot of the data is also inaccurate.



      Since a lot of these companies are American and I have lived my life half US / half EU and I'm now an EU resident, I was wondering:



      • does the GDPR applies to them?

      • does the GDPR applies to data they claim was 'public', but I see that this is not really true?

      • What's the responsibility of search engines, like Google, in indexing and promoting that content. As they seem to have a 'contact the webmaster' approach to it, is it possible to get the content (at the minimum the inacurate one) removed from their index?






      gdpr






      share|improve this question













      share|improve this question











      share|improve this question




      share|improve this question










      asked 2 hours ago









      ThomasThomas

      1413




      1413




















          1 Answer
          1






          active

          oldest

          votes


















          3














          The GDPR applies to such sites if they offer services in the EU/EEA. If they clearly wanted to avoid being subject to the GDPR, they should block visitors from the EEA. For the GDPR, only location matters. Other concerns like residence or citizenship are generally irrelevant.



          Personal data does not turn non-personal just because it was public. So the GDPR still applies when the data was collected from public sources. However, the data controller (who determines the purpose of processing) often has to balance your rights and interests against other interests (e.g. when using legitimate interest as a legal basis for some processing). For the purpose of publicly displaying your data, only showing data that was already public anyway makes it easier to argue that this is fine.



          But when the GDPR applies, you have data subject rights. Relevant rights include:



          • a right to access, to see all the data they have about you

          • a right to rectification, to correct wrong data they hold about you

          • a right to restriction, effectively an opt-out

          • a right to erasure (also known as the right to be forgotten)

          These rights apply both against the website and against Google Search (arguably, both are doing the exact same thing). Google correctly points out that they can't remove information from the Web, but they can hide information from search results.



          If you feel that your requests have not been resolved correctly, you can issue a complaint with your country's data protection authority. In theory you can also sue them. In practice, GDPR enforcement against overseas data controllers can be quite difficult and has not yet happened.






          share|improve this answer























            Your Answer








            StackExchange.ready(function()
            var channelOptions =
            tags: "".split(" "),
            id: "617"
            ;
            initTagRenderer("".split(" "), "".split(" "), channelOptions);

            StackExchange.using("externalEditor", function()
            // Have to fire editor after snippets, if snippets enabled
            if (StackExchange.settings.snippets.snippetsEnabled)
            StackExchange.using("snippets", function()
            createEditor();
            );

            else
            createEditor();

            );

            function createEditor()
            StackExchange.prepareEditor(
            heartbeatType: 'answer',
            autoActivateHeartbeat: false,
            convertImagesToLinks: false,
            noModals: true,
            showLowRepImageUploadWarning: true,
            reputationToPostImages: null,
            bindNavPrevention: true,
            postfix: "",
            imageUploader:
            brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
            contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
            allowUrls: true
            ,
            noCode: true, onDemand: true,
            discardSelector: ".discard-answer"
            ,immediatelyShowMarkdownHelp:true
            );



            );













            draft saved

            draft discarded


















            StackExchange.ready(
            function ()
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2flaw.stackexchange.com%2fquestions%2f39322%2fdoes-gdpr-cover-the-collection-of-data-by-websites-that-crawl-the-web-and-resell%23new-answer', 'question_page');

            );

            Post as a guest















            Required, but never shown

























            1 Answer
            1






            active

            oldest

            votes








            1 Answer
            1






            active

            oldest

            votes









            active

            oldest

            votes






            active

            oldest

            votes









            3














            The GDPR applies to such sites if they offer services in the EU/EEA. If they clearly wanted to avoid being subject to the GDPR, they should block visitors from the EEA. For the GDPR, only location matters. Other concerns like residence or citizenship are generally irrelevant.



            Personal data does not turn non-personal just because it was public. So the GDPR still applies when the data was collected from public sources. However, the data controller (who determines the purpose of processing) often has to balance your rights and interests against other interests (e.g. when using legitimate interest as a legal basis for some processing). For the purpose of publicly displaying your data, only showing data that was already public anyway makes it easier to argue that this is fine.



            But when the GDPR applies, you have data subject rights. Relevant rights include:



            • a right to access, to see all the data they have about you

            • a right to rectification, to correct wrong data they hold about you

            • a right to restriction, effectively an opt-out

            • a right to erasure (also known as the right to be forgotten)

            These rights apply both against the website and against Google Search (arguably, both are doing the exact same thing). Google correctly points out that they can't remove information from the Web, but they can hide information from search results.



            If you feel that your requests have not been resolved correctly, you can issue a complaint with your country's data protection authority. In theory you can also sue them. In practice, GDPR enforcement against overseas data controllers can be quite difficult and has not yet happened.






            share|improve this answer



























              3














              The GDPR applies to such sites if they offer services in the EU/EEA. If they clearly wanted to avoid being subject to the GDPR, they should block visitors from the EEA. For the GDPR, only location matters. Other concerns like residence or citizenship are generally irrelevant.



              Personal data does not turn non-personal just because it was public. So the GDPR still applies when the data was collected from public sources. However, the data controller (who determines the purpose of processing) often has to balance your rights and interests against other interests (e.g. when using legitimate interest as a legal basis for some processing). For the purpose of publicly displaying your data, only showing data that was already public anyway makes it easier to argue that this is fine.



              But when the GDPR applies, you have data subject rights. Relevant rights include:



              • a right to access, to see all the data they have about you

              • a right to rectification, to correct wrong data they hold about you

              • a right to restriction, effectively an opt-out

              • a right to erasure (also known as the right to be forgotten)

              These rights apply both against the website and against Google Search (arguably, both are doing the exact same thing). Google correctly points out that they can't remove information from the Web, but they can hide information from search results.



              If you feel that your requests have not been resolved correctly, you can issue a complaint with your country's data protection authority. In theory you can also sue them. In practice, GDPR enforcement against overseas data controllers can be quite difficult and has not yet happened.






              share|improve this answer

























                3












                3








                3







                The GDPR applies to such sites if they offer services in the EU/EEA. If they clearly wanted to avoid being subject to the GDPR, they should block visitors from the EEA. For the GDPR, only location matters. Other concerns like residence or citizenship are generally irrelevant.



                Personal data does not turn non-personal just because it was public. So the GDPR still applies when the data was collected from public sources. However, the data controller (who determines the purpose of processing) often has to balance your rights and interests against other interests (e.g. when using legitimate interest as a legal basis for some processing). For the purpose of publicly displaying your data, only showing data that was already public anyway makes it easier to argue that this is fine.



                But when the GDPR applies, you have data subject rights. Relevant rights include:



                • a right to access, to see all the data they have about you

                • a right to rectification, to correct wrong data they hold about you

                • a right to restriction, effectively an opt-out

                • a right to erasure (also known as the right to be forgotten)

                These rights apply both against the website and against Google Search (arguably, both are doing the exact same thing). Google correctly points out that they can't remove information from the Web, but they can hide information from search results.



                If you feel that your requests have not been resolved correctly, you can issue a complaint with your country's data protection authority. In theory you can also sue them. In practice, GDPR enforcement against overseas data controllers can be quite difficult and has not yet happened.






                share|improve this answer













                The GDPR applies to such sites if they offer services in the EU/EEA. If they clearly wanted to avoid being subject to the GDPR, they should block visitors from the EEA. For the GDPR, only location matters. Other concerns like residence or citizenship are generally irrelevant.



                Personal data does not turn non-personal just because it was public. So the GDPR still applies when the data was collected from public sources. However, the data controller (who determines the purpose of processing) often has to balance your rights and interests against other interests (e.g. when using legitimate interest as a legal basis for some processing). For the purpose of publicly displaying your data, only showing data that was already public anyway makes it easier to argue that this is fine.



                But when the GDPR applies, you have data subject rights. Relevant rights include:



                • a right to access, to see all the data they have about you

                • a right to rectification, to correct wrong data they hold about you

                • a right to restriction, effectively an opt-out

                • a right to erasure (also known as the right to be forgotten)

                These rights apply both against the website and against Google Search (arguably, both are doing the exact same thing). Google correctly points out that they can't remove information from the Web, but they can hide information from search results.



                If you feel that your requests have not been resolved correctly, you can issue a complaint with your country's data protection authority. In theory you can also sue them. In practice, GDPR enforcement against overseas data controllers can be quite difficult and has not yet happened.







                share|improve this answer












                share|improve this answer



                share|improve this answer










                answered 44 mins ago









                amonamon

                97816




                97816



























                    draft saved

                    draft discarded
















































                    Thanks for contributing an answer to Law Stack Exchange!


                    • Please be sure to answer the question. Provide details and share your research!

                    But avoid


                    • Asking for help, clarification, or responding to other answers.

                    • Making statements based on opinion; back them up with references or personal experience.

                    To learn more, see our tips on writing great answers.




                    draft saved


                    draft discarded














                    StackExchange.ready(
                    function ()
                    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2flaw.stackexchange.com%2fquestions%2f39322%2fdoes-gdpr-cover-the-collection-of-data-by-websites-that-crawl-the-web-and-resell%23new-answer', 'question_page');

                    );

                    Post as a guest















                    Required, but never shown





















































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown

































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown







                    Popular posts from this blog

                    名間水力發電廠 目录 沿革 設施 鄰近設施 註釋 外部連結 导航菜单23°50′10″N 120°42′41″E / 23.83611°N 120.71139°E / 23.83611; 120.7113923°50′10″N 120°42′41″E / 23.83611°N 120.71139°E / 23.83611; 120.71139計畫概要原始内容臺灣第一座BOT 模式開發的水力發電廠-名間水力電廠名間水力發電廠 水利署首件BOT案原始内容《小檔案》名間電廠 首座BOT水力發電廠原始内容名間電廠BOT - 經濟部水利署中區水資源局

                    Prove that NP is closed under karp reduction?Space(n) not closed under Karp reductions - what about NTime(n)?Class P is closed under rotation?Prove or disprove that $NL$ is closed under polynomial many-one reductions$mathbfNC_2$ is closed under log-space reductionOn Karp reductionwhen can I know if a class (complexity) is closed under reduction (cook/karp)Check if class $PSPACE$ is closed under polyonomially space reductionIs NPSPACE also closed under polynomial-time reduction and under log-space reduction?Prove PSPACE is closed under complement?Prove PSPACE is closed under union?

                    Is my guitar’s action too high? Announcing the arrival of Valued Associate #679: Cesar Manara Planned maintenance scheduled April 23, 2019 at 23:30 UTC (7:30pm US/Eastern)Strings too stiff on a recently purchased acoustic guitar | Cort AD880CEIs the action of my guitar really high?Μy little finger is too weak to play guitarWith guitar, how long should I give my fingers to strengthen / callous?When playing a fret the guitar sounds mutedPlaying (Barre) chords up the guitar neckI think my guitar strings are wound too tight and I can't play barre chordsF barre chord on an SG guitarHow to find to the right strings of a barre chord by feel?High action on higher fret on my steel acoustic guitar