From the “no matter how bad you think it is, it’s worse” department.

  • intrepid@lemmy.ca
    link
    fedilink
    arrow-up
    4
    ·
    edit-2
    10 months ago

    How does GDPR mandate a public audit of the code base? Is there such a provision in it? (Not a confrontational question)

    • jarfil@beehaw.org
      link
      fedilink
      arrow-up
      3
      ·
      10 months ago

      It doesn’t. You can check the full text at:

      https://eur-lex.europa.eu/eli/reg/2016/679/oj

      The only references to audits, are that supervisors can require an audit, processors need to allow audits by controllers, DPOs need to prepare for audits, and corporations or groups of enterprises need to have audit procedures in place.

      It doesn’t say anything about what kind of audits these need to be, other than to ensure compliance with the law.

    • MentalEdge@sopuli.xyz
      link
      fedilink
      arrow-up
      16
      ·
      10 months ago

      They’re just saying that if they have nothing to hide, they should prove it. Not that GDPR requires an audit.