Take a seat and see what information they have about you and how they can get it on demand.
What is GDPR and what do they eat it with?
General Data Protection Regulation (GDPR) is a personal data protection regulation, which was adopted by the European Parliament. By and large it concerns the EU citizens, but there are very interesting points that may concern also the CIS countries. The essence of the document is to make the data storage process more secure and transparent for users.
The main feature of the GDPR is the possibility for the user to request the stored information, as well as the purpose, timing and method of collecting and storing the information. In simple words, if you are in the EU and even if you are not a citizen of one of the countries, you can request such information from any service.
GDPR fines reach EUR 20 million (about 1.5 billion rubles) or 4% of the annual global income of the company.
The point is that when you register on the next website, everybody checks the permission to process personal data on the machine and nobody reads what will happen to them and what the agreement is. Sites can store this information at home, sometimes even in unencrypted form. How many cases have already happened when top companies have lost their users’ personal data.
Sites and services owners must now consent to each collection and processing of data after this law has been enacted. The user may change his mind and revoke his right, to which the owner must completely remove the information. Isn’t this a good idea?
How does this work in our reality?
After the law came into force, it was very interesting to see what information the Vkontakte kept. In order to do so, it was necessary to send a request for technical support and the EU residents were provided with a dump with all the information that is stored since the registration. Also, the file contains deleted correspondence, as well as information about changing passwords and other important information from the moment of registration.
What information is stored in such archive:.
- All name change history.
Groups that the user has administered or is currently an administrator.
- Downloaded files in WC, IP address, city name. It also stores deleted files, voice messages that were deleted from correspondence.
- All deleted files are stored in this file with links that are available to unauthorized users. They are stored further, as are simple files (PDF, etc.).
All deleted files are stored in this file with links that are available to unauthorized users.
- Saved photos, even from closed album
- All correspondence history with all attachments, even remote ones.
- All the binding-release history of the number.
- Password recovery history to page.
- Messages left on the user’s wall (even if they were deleted).
Now we have some nice additions. Analyzing the answers of VK technical support, we can conclude that now any user from the Russian Federation can get such data on their own initiative. Thus, you can also request all information and see what messages you deleted, what files you sent and even what was deleted from the wall or closed albums.
According to the GDPR requirements, Telegram has created a special bot through which the users could get their data. Now every citizen of the EU can go in and get the necessary information. A little bit later it is possible to get information in the settings of the leptopic applications. To do this, you need to perform simple steps.
Go to the application for Windows or macOS (version must be higher than 1.3.8). Then you need to go to the settings, in the Advanced section select Export Telegram Data.
It is also possible to choose which types of files you want to get (photos, videos, group correspondence). In the window that pops up you can choose which data you want to download:
Downloads start in 24 hours. This will be additionally notified. This will be notified when you have finished selecting the data you need. In addition, it is worth reminding that mobile clients do not have the opportunity to receive stored data.
What is in the archive:
- Name, last name and profile description
- current and past avatars (they are also visible in the profile);
- phone contact list (including numbers of users not registered with Telegram);
- list of closest contacts, formed automatically;
- personal messages – sent and received – with all media content
- messages sent to group chats and channels
- active sessions;
- installed and created stickers;
- unsent drafts;
- IP address list that does not match the addresses of active sessions.
GDPR is a good option for users. Now companies have to ask each time whether they can store certain data or not. The owner of the information can request the stored information, purpose and time frame. This is very good, because you can control your info by periodically making requests to the service. Also, it is very important that companies must delete information about you if you so do not agree with the processing of personal data or withdraw this right.