> we have GDPR in order to punish intentional bad behavior, not to prosecute inc... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

zimpenfish on Sept 27, 2020 | parent | context | favorite | on: Cloudflare keeps sending emails over a year after ...

> we have GDPR in order to punish intentional bad behavior, not to prosecute incompetence

That was exclude any data breaches though, wouldn't it? Because they are always incompetence rather than intentional bad behaviour on the part of the breached companies.

tuxone on Sept 27, 2020 [–]

Data breach will not disappear thanks to GDPR. GDPR tell you that you must, if possible, notify in case of data breach.

corty on Sept 27, 2020 | [–]

Correct but incomplete: GDPR also tells you to use appropriate measures to prevent breaches. And of course if there was a breach, your measures were not appropriate so you need to change them.

Consider applying for YC's W25 batch! Applications are open till Nov 12.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact