GDPR dating information update

Hackers movie

With GDPR I send out emails to OKCupid, Plenty of Fish, Tinder and others. So far I’ve only gotten responses from POF and OkCupid. Which means Tinder and others have about a day or so to get back to me with everything before I can start to throw down some fire.

Before I headed on holiday, I got a message from POF then OKcupid a day later, saying they need the request from the email which is on the account. Fair enough, so I forwarded each email to that email address and replied all to myself and to them but from that email account address.

A few days later I got emails, first from POF and then OKCupid.

You have recently requested a copy of your PlentyofFish (“POF”) personal data, and we’re happy to report that we have now verified your identity.

We are attaching a copy of your personal data contained in or associated with your POF account.  The password to access the personal data will be sent in a separate email.

By downloading this data, you consent to the extraction of your data from POF, and assume all risk and liability for such downloaded data. We encourage you to keep it secure and take precautions when storing or sharing it.

The information contained in this archive may vary depending on the way you have used POF. In general, this information includes content and photos you have provided us, whether directly or through your social media accounts, messages you have sent and other data you would expect to see from a social media service like POF.

Please note that there is some information we cannot release to you including information that would likely reveal personal information about other users. Those notably include messages you received on POF, which are not provided out of concern for the privacy of the senders.

Sincerely,

POF Privacy Team

Then similar from OKcupid, which makes sense being the same company really.

Dear Mr. Forrester:

You have recently requested a copy of your OkCupid personal data, and we’re happy to report that we have now verified your identity.

We are attaching a copy of your personal data contained in or associated with your OkCupid account. The password to access the personal data will be sent in a separate email.

By downloading this data, you consent to the extraction of your data from OkCupid, and assume all risk and liability for such downloaded data. We encourage you to keep it secure and take precautions when storing or sharing it.

The information contained in this archive may vary depending on the way you have used OkCupid. In general, this information includes content and photos you have provided us, whether directly or through your social media accounts, messages you have sent and other data you would expect to see from a social media service like OkCupid.

Please note that there is some information we cannot release to you including information that would likely reveal personal information about other users. Those notably include messages you received on OkCupid, which are not provided out of concern for the privacy of the senders.

Sincerely,

OkCupid Privacy Team

So on my train journey from Stockholm to Copenhagen, I had a look inside the Zip files shared with me. Quite different, I’d be interesting to see what others will do.

  • Forrester, I – POF Records.zip
    • UserData.json | 6.2 kb
    • UserData.pdf | 40.5 kb
    • Profile_7.jpg | 30.1 kb
    • Profile_6.jpg | 25.0 kb
    • Profile_5.jpg | 17.4 kb
    • Profile_4.jpg | 18.8 kb
    • Profile_3.jpg | 26.6 kb
    • Profile_2.jpg | 11.7 kb
    • Profile_1.jpg | 30.7 kb
  • OkCupid_Records_-Forrester__I.zip
    • Ian Forrester_JSN.txt | 3.8 mb
    • Ian Forrester_html.html | 6.6mb

As you can see quite different, interestingly no photos in the OKCupid data dump, even the ones I shared as part of my profile. In POF the PDF is a copy of the Json file, which is silly really.

So the Json files are the most interesting parts…

Plenty of Fish

.POF don’t have much interesting data, basically a copy of my profile data in Json including Firstvisit, FirstvisitA, etc to FirstvisitE complete with my ip address. I also can confirm I started my profile on 2012-01-25.

Then there is my BasicSearchData and AdvancedSearchData  which includes the usual stuff and when I LastSearch ‘ed and from which IP address.

Nothing else… no messages

OkCupid

OkCupid has a ton more useful information in its Json. Some interesting parts; I have logged into OKCupid a total of 24157 times! My status is Active? My job is Technology?  The geolocation_history is pretty spot on and the login_history goes from July 2007 to current year, complete with IP and time.

The messages is really interesting! They decided to share one of the messages, so only the ones you send rather what you received. As the messages are not like emails, you don’t get the quoted reply, just the sent message. Each item includes who from (me) and time/date. There are some which are obviously a instant massager conversation which look odd reading them now. In those ones, theres also fields for peer, peer_joined, time and type. Its also clear where changes have happened for example when you use to be able to add some formatting to the message and you use to have subject lines.

Some which stick out include, Allergic to smoking?, insomnia, ENTP and where next, The Future somewhat answered, So lazy you’ve only done 40 something questions, Dyslexia is an advantage, But would you lie in return? No bad jokes, gotland and further a field, Ok obvious question, etc.

Next comes the photos (My photos, no one elses)

"caption": "OkCupid's removal of visitors is so transparent, I don't know why they bothered to lie to us all?", 
"photo": "https://k1.okccdn.com/php/load_okc_image.php/images/6623162030294614734", 
"status": "Album Picture Active", 
"uploaded": "2017-08-08 19:16:20"

Of course the images are publicly available via the url, so I could pull them all down with a quick wget/curl. Not sure what to make about this idea of making them public. Security through obscurity anyone?

Stop screwing with OKCupid
As long as you can see the picture above, OKCupid is making my profile pictures public

Now the images strings seems to be random but don’t think this is a good idea at all! Wondering how it sits with GDPR too, also wondering if they will remove them after a period of time. Hence if the image a above is broken, then you know what happened.

Then we are on to the purchases section. It details when I once tried A-list subscription and when I cancelled it. How I paid (paypal), how much, address, date, etc… Its funny reading about when I cancelled it…

"comments": "userid = 7367007913453081320 was downgraded to amateur", 
"transaction": "lost subscription",

The big question I always had was the question data. Don’t worry they are all there! For example here’s just one of mine.

{
"answer_choices": {
"1": "Yes", 
"2": "No"
}, 
"prompt": "Are you racist?", 
"question_id": 7847, 
"user_acceptable_answers": [
"No"
], 
"user_answer": "No", 
"user_answered_publicly": "no", 
"user_importance": "mandatory"
},

After all those questions, theres a bunch of stuff about user_devices I’ve used to log into OkCupid over the years going right back. Stuff about preferences for searches, etc.

Going to need some time to digest everything but the OKCupid data dump is full of interesting things. I might convert the lot to XML just to make it easier for me to over view.

Airbnb what can I say…?

Airbnb business model

I’ve had my ups and downs with Airbnb, being a host and being a guest. Recently my flat made the decision to block/ban people renting out their who flat for Airbnb. Mainly for reasons in this post, profiteers make a killing on Airbnb – and erode communities. The destruction when some guests have gone off is pretty bad. Then the committee (who I’m a member) found there is a clause in which many are not aware of

Borrowers who are granted permission could be charged higher interest or additional fees.

Those who go behind lenders’ backs and list their property on Airbnb regardless would be in breach of their contract and the lender could ask them to repay the mortgage immediately.

The important thing to remember is there is are different types of hosts. For example I only put my spare room on Airbnb not my whole flat. I trust people but there is no way I would give them the keys to my home without me being there at the same time! I remember going to a airbnb meetup in Manchester and being shocked at the difference between those like me who do it for a bit of extra cash and those who treat it like a business.

On the business side theres many stories including this one Airbnb: ‘It’s a cash machine. It’s magical. You are paid to go on holiday.’ These stories do worry me and do make me cross my arms. But on the guest side its been really great to fly around europe and stop at Airbnb’s for sometimes 3x less than the hotels near by. I’ve benefited greatly being able to do this but am very aware of the racial discrimination of the sharing economy. I’m fortunate to being a host and being able to verified about 9 different things including my government ID and full address. Being on the service early on means my rep is pretty good even being awarded superhost a few years ago.

I’ve met some great people doing Airbnb too, even met my favourite Airbnb guest in Portugal in March for a short while, 2.5 years after I hosted her. I bet those host their spare house have no idea who is there or really care?

Starting now would be difficult as I’ve found out from friends who try it, but its clear cities and countries are coming down on Airbnb for ruining communities as mentioned before, Airbnb wrecks travellers’ holiday plans as battle with cities intensifies. You thought it was just Uber right? Nope the whole silicon valley business model is tearing up communities and existing businesses. Neo-liberalism at its best or worst depending how you look at things.

But at the heart of it do Airbnb give a rats? As I found when I went to Japan (listing no longer exists) and Iceland, no they really dont. The problem is its a neat system, just run by a silicon valley company which is aiming to put everybody else out of business then yank the price cord up once they got us. Imagine if Airbnb was run by a public service company, non-profit or coop?

I do think we need to separate the hosting situations. I’m a host but I’m nothing like those who host their 4th bought house, screaming blue murder that they are not superhost entitled and out to make a killing. If I was as greedy, I certainly would drop the price (I charge £45 per night) and rise the price massive on concerts days (A woman came to the taylor swift concern for £45/night, hotels and other airbnb’s were charging £150+ a night). There is clearly a difference and its important to remember this.

Hot Chocolate with the Carolina Reaper

Carolina Reaper Dark Chocolate

When on holiday, I’m always interested in different teas and chocolates. I happen to come across urbandeli when seeking brunch and decided to go back and check it out in full. I saw a whole shelf of chocolates but one stuck out a mile away, mainly because it had a tag underneath it saying something in Swedish about danger not for Children!

To be honest I thought it was some gimmick but as I love chilli & dark chocolate I bought a bar and decided to try it out in store, as the store is part of a bar and hotel, meaning anything you bought you could consume too (they even have microwaves).

On further investigation I realised while eating my first tiny bit. This wasn’t a joke, the chilli flaked bars I had in the past were nothing like the heat this was delivering to my tongue and mouth. It was the real deal, proper heat from a small chunk of chocolate.

It wasn’t till I looked it up, I realised everything. I heard of the Scoville number but didn’t know the scale of the numbers. I had also misread the number on the packet as 1.569 not 1569300! Massive difference!

The name of the chocolate came from the chilli with the same name.
With a Scoville value of 1,569,300 which was officially the hottest chilli in the world 5-7 years ago. Gizmodo did a nice piece about the chilli which I found interesting.

I finally found it on Cocoarunners site with a review

This is not just a chilli chocolate bar, this a Carolina Reaper chilli chocolate bar.

Bred in South Carolina, the Carolina Reaper has held the Guinness World Record for the world’s hottest chilli since 2013. When tested for the record, the batch of chilies had an average heat level of 1,569,300 Scoville Heat Units. The hottest individual pepper measured 2.2 million Scovilles. For comparison a Jalapeno generally has a heat range of 1,000 – 20,000 Scoville units.

The dark chocolate is a blend oh Ghanaian and Dominican beans but honestly this serves as nothing more than a base for the chilli. Break off the smallest piece imaginable, put it on your tongue and discover what is almost certainly the world’s hottest chocolate (and certainly the hottest chocolate we’ve ever tasted).

There is no question of subtle flavours and different tasting notes. The chilli flavour starts deceptively slowly and keeps on building and building. Waves of heat pass across the palate, overwhelming anyone with a low spice tolerance. Long after the chocolate itself has melted away you are left with a tingling sensation on the tongue – a piquant reminder of the Carolina Reaper’s passage. A unique chocolate experience, this is not a bar for the faint-hearted.

Always good to find these type of things…!

Love your pebble, don’t want to see it turn into plain watch? Setup a rebble account now!

Pebbles growing in work

If like me you love the pebble and although I hate that Fitbit bought them, can’t really slate their support to keep the watch alive and working with the rebble team.

The Rebble team have been literally everywhere urging pebble users to create an account on the rebble servers before the pebble servers are switched off for good.

The Rebble account system is up and running, and now is the time for you to create your accounts. Head over to Rebble Auth and log in using your preferred site. You’ll then be asked to link your Pebble account. Please do: we will use this to import information from the Pebble servers before they shut down in order to help make the transition smoother.

It is especially important for developers to link their Pebble accounts now. Once the Pebble services shut down at the end of this month, we will no longer be able to identify developers who did not link their accounts, and so we will be unable to let them update or otherwise change their apps.

We are also going to use the number of accounts created to assist us in determining service usage and attempt to validate our assumptions about the number of users we expect to see.

That’s all there is to do right now: there is no app to install, and we are not yet ready for users to switch over to Rebble services. We will be sure to update you when we are!

Do it now, it takes a minute or so and will save you a lot of heartache later!

How many countries have you been to in the world?

Worldmap in flagsA interesting question was raised at a recent away day at work…

How many countries have you been to?

Of course the best of the group was someone obvious with 50+, although even he can’t take on Graham. But it got me thinking… as I started to list them out, I certainly have travelled maybe much more than most people?

I originally said about 20 and I was close but with some time and a world map, here’s the full list.

    • United Kingdom (not going to divide up England, Wales, Scotland)
    • Ireland
    • France
    • Canada
    • United States
    • Spain
    • Iceland
    • Germany
    • Netherlands
    • Portugal
    • Belgium
    • Bosnia and Herzegovina
    • Denmark
    • Sweden
    • Estonia
    • Turkey
    • Jamaica
    • Japan
    • Mexico
    • Poland
    • Romania
    • Switzerland *
    • Finland *
    • United Arab Emirates (UAE) *

*  is ones where I have passed through a airport for more than a couple hours, so technically yes I have been there but not really. Finland I will make official later this year with a trip to Helsinki.

Its interesting to see the places I’ve not visited like most of the African countries, India, most of Asia and south America.

OKcupid responds to my GDPR request

OkCupid no Match protest

I mentioned how I emailed a load of dating sites for my data and then some… Under GDPR. So far I’ve got something form POF but OKcupid finally got back to me, after finally making it to supportconsole@okcupid.com.

Hello,

OkCupid has received your recent request for a copy of the personal data we hold about you.

For your protection and the protection of all of our users, we cannot release any personal data without first obtaining proof of identity.

In order for us to verify your identity, we kindly ask you to:

1. Respond to this email from the email address associated with your OkCupid account and provide us the username of your OkCupid account.

2. In your response to this email, please include a copy of a government-issued ID document such as your passport or driving license. Also, we ask you to please cover up any personal information other than your name, photo and date of birth from the document as that is the only information we need.

We may require further verification of your identity, for example, if the materials you provide us do not establish your identity as being linked to the account in question.

Please note that if you previously closed your account, your data may be unavailable for extraction as we proceed to its deletion or anonymization in accordance with our privacy policy. Even if data is still available for extraction, there is some information we cannot release to you including information that would likely reveal personal information about other users. Those notably include messages you received on OkCupid, which are not provided out of concern for the privacy of the senders.

Best,

OkCupid Privacy Team

Pretty much the same as the POF reply.

POF first to respond to my GDPR request

Plenty of Fish

I mentioned how I emailed a load of dating sites for my data and then some… Under GDPR. So far I’ve been bounced around a little but POF is the first positive email I gotten so far…

PlentyofFish (“POF”) has received your recent request for a copy of the personal data we hold about you.

For your protection and the protection of all of our users, we cannot release any personal data without first obtaining proof of identity.

In order for us to verify your identity, we kindly ask you to:

1. Respond to this email from the email address associated with your POF account and provide us the username of your POF account.

2. In your response to this email, please include a copy of a government-issued ID document such as your passport or driving license. Also, we ask you to please cover up any personal information other than your name, photo and date of birth from the document as that is the only information we need.

We may require further verification of your identity, for example, if the materials you provide us do not establish your identity as being linked to the account in question.

Please note that if you previously closed your account, your data may be unavailable for extraction as we proceed to its deletion or anonymization in accordance with our privacy policy. Even if data is still available for extraction, there is some information we cannot release to you including information that would likely reveal personal information about other users. Those notably include messages you received on POF, which are not provided out of concern for the privacy of the senders.

Best,

POF Privacy Team

Well I guess they are being careful at least but will be interested to see what other questions they ask me.

Still wondering when the rest will get in touch?

Podcasts in Plex? But which Plex?

Verge podcast on PlexPodcasts on Plex, at long last?

I was excited by the news of podcasts on plex

So excited I decided to switch to the beta version to give it a try.

Now I know its beta but after closer inspection of the blog post, I noticed everything was focused on the player application. As most of my Plex use is as a server, I was expecting to see podcasts as a plex scanner/agent option or even better a library type.

Currently it seems like you can create a podcast library on the Plex player/app but that doesn’t sync back to anywhere. I expected that under my user account I would see the new podcast library on my Plex media server too. Trying to create a new podcast library also goes no where when using the web interface to the media server.

My hope is this is just a beta issue and it will be rolled out to the media server too. Because right now the point of Plex is the sync capability around one app. This does make me wonder about Plex’s previous move which upset a lot of people.

Till this is clear, I’ll be sticking with my elaborate podcast sync system.

Another thought provoking Thinking Digital

Thinking Digital 2018

Thinking Digital is always a great conference and I try to make sure I get to Newcastle for each one. Now in its 11th year, its clear there is no sign of it slowing down.

This year I booked quite late and missed a number of excellent workshops, so ended up doing the startup thing. It was the first time I had been involved in it but it was really interesting. Thinking digital switched to a one and half format a long while ago and I got to say its working well. After the mass dinner on the workshop day it was a early start for the conference.

Herb always does such a great job that I rarely even look at the schedule in advance, and I wasn’t wrong.

In the usual manor here is my highlights from Thinking Digital 2018.

Thinking Digital 2018

Graham Richter

Surprisingly gave a talk about blockchain and communicated it extremely well. I have heard many people try and explain blockchain to regular people and either confuse the audience or do a dis-justice to blockchain technology. Maybe this is partly why blockchain gets such a bad rep by so many people. At Fuel 2018, a speaker who I gather explained blockchain in 2017 had to come back to explain again in 2018, acknowledging how much he confused people the first time around.

I also never heard of tip your farmer but I love the idea and it perfectly illustrates the kind of applications blockchain could empower and drive.

Thinking Digital 2018

Paul Irwin

I already wrote about  which happened at Thinking Digital during Pauls talk earlier which  I needed to address sooner complete with an update.

If I could ignore the tshirt I would be clapping along with everyone else. But Paul’s choice of tshirt made it very difficult to take what he was telling the audience in. As he said before it was removed? (my non-official twitter client still has it)

Think your blog says more about you as a person that me as a speaker. Interesting read though. Keep up the good work.

He might be right and thats on me but its the truth. I wasn’t going to clap along with everyone else if I wasn’t feeling it. I was being true to myself and you can’t take that away from me.  But I did want to say Herb and the Thinking Digital production did a amazing job against the difficult odds. No matter what they did it was going to be criticised by someone, and they did the best in a very difficult place. I seen/heard too many other conferences completely wrong foot themselves into oblivion when faced with such a incident. For example CHI 2018 with OKCupid’s founder, which had a session afterwards to discuss the outrage after the keynote.

Thinking digital 2018

Ravinder Dahiya

Although quite a dry academic talk, the content was quite amazing. The whole idea of e-skin just conjures up so many thoughts and ideas. The videos spoke for themself pretty much and gave me much greater appreciation of skin generally.

Thinking Digital 2018

Yang Dan

On a similar vein, Yang presentated her research on sleep. The power of sleep is getting very well known in the circles of health and wellbeing. So it was quite a surprise to hear Yang’s research as she was able to suggest to mice to sleep with direct amounts of light on identified parts of the brain. If that wasn’t crazy enough, she could reverse the process in a similar way. It was incredible to see and the research felt like something out of inception.

It was a suggestion not a go to sleep now, meaning the mice would find somewhere they felt comfortable like their nests and go to sleep there. Instead of falling to sleep straight away. Like in inception…

Cobb: How complex is the idea?
Saito: Simple enough.
Cobb: No idea is simple when you need to plant it in somebody else’s mind.

This level of suggestion is quite something…

An idea is like a virus. Resilient. Highly contagious. And even the smallest seed of an idea can grow. It can grow to define or destroy you.

Talking to Yang afterwards, she was clear its only under lab conditions with mice. Shes a long way from humans but identifying the part of the brain has many promising outcomes for those who suffer with sleep problems.

Thinking Digital 2018

Dave Evans

I first saw Dave Evans at FutureFest 2 years ago and was impressed enough to buy the book designing your life. Designing your life is all about applying the discipline and practice of design to your life. For a designer like me this makes a hell of a lot of sense; especially when you start to question those dysfunctional believes.

Generally I would lean on get curious, talk to people, try stuff, tell the story then repeat.

Dave was gracious enough to run a session over lunch time on a aspect of designing your life. To be honest I really enjoyed the workshop and learned something about myself which I hadn’t really considered before. Most of designing your life is online but the book is once again great to lend to  friends and family.

Thinking Digital 2018

Tatiana Simonian

Tatiana approached the subject of wellness and mindlessness in our digital lives. Although not ground breaking, it was a welcomed talk and likely quite new for lots of people. It certainly felt like there was a whole load more to be said, as she touched on the area of diversity, diverse thinking and inclusion. Certainly would have liked to hear much more about her thoughts in that area.

Thinking Digital 2018

Sarah Wiseman

Sarah had the audience in giggles as she talked about the new language of emojis. From their incredible popularity to groups & communities repurposing emojis for different purposes. There was a very serious point made about trying and failing to interpreting language, emojis  and emotion. Something I picked up in Rana June’s talk from Fuel too.

Thinking Digital 2018

Julie Freeman

Its great to see data being used beyond the screen and Julie’s project exploring data as art material and objects enriched with data; gave me new insight for the objects of immersion work I’ve been working on for a while.

You know when you should work with someone, Julie is that person and luckily I got to spend another day with her during University of York’s data stories hackday.

Thinking Digital 2018

Mr Bingo

Now to be fair Mr Bingo always steals the show and this thinking digital he did it again in Newcastle. I never question Herb’s excellent curation skills but Mr Bingo as the last speaker would have been great as a nice light end to a already excellent conference.

If you haven’t been to thinking digital before, next year get your butt in gear and save a date in your calendar for 15-16th May 2019.

Data portability and GDPR, been waiting a long time for this

EU GDPR 2018

One of the things I always wanted but never couldn’t see how it would happen without the good will of companies. Was real data portability of my own data.

Google, Facebook and others do provide a data dump but I found it really interesting to see the difference in my Facebook dump/zip/archive. I request it every year or when something changes. This year I did one while Facebook struggled to deal with the impact of Cambridge Analytica and the new GDPR changes.

In 2017 my zip was 31.4 MB (31,425,658 bytes)
In 2018 my zip was 171.3 MB (171,267,617 bytes)

Unlike previously FB included ALL the media in the messages I’ve exchanged with friends. All those gifs and videos friends have shared are now in the dump. I find it interesting they were not included previously. Which always raises the question of ownership. Something we (dataportability group) talked a lot.

I’m so looking forward to similar with other services… Although I’m still unsure if you can legally create services which use the data exports to import or not. It should be possible, as its your data.

Having already crafted a email to send to OKCupid, POF, Bumble, Tinder and some other dating sites similar to when the journalist requested every bit of data they had on her. Its set to send on May 25th which is the day when GDPR comes into effect aka tomorrow!

Thanks to Ubergill for much improving the email I originally drafted…

I’m looking forward to the replies!

Dear {service}

I am making this request for access to personal data pursuant to Article 15 of the General Data Protection Regulation. I am still concerned that your company’s information practices may be putting my personal information at undue risk of exposure or in fact has breached its obligation to safeguard my personal information.

I would like you to be aware at the outset, that I expect a reply to my request within one month as required under Article 12, failing which I will be forwarding my inquiry with a letter of complaint to the Information Commissioner’s Office.

Please advise as to the following:

  1. Please confirm to me whether or not my personal data is being processed. If it is, please provide me with the categories of personal data you have about me in your files and databases.
  2. In particular, please tell me what you know about me in your information systems, whether or not contained in databases, and including e-mail, documents on your networks, or voice or other media that you may store.
  3. Additionally, please advise me in which countries my personal data is stored, or accessible from. In case you make use of cloud services to store or process my data, please include the countries in which the servers are located where my data are or were (in the past 12 months) stored.
  4. Please provide me with a copy of, or access to, my personal data that you have or are processing.
  5. Please provide me with a detailed account of the specific uses that you have made, are making, or will be making of my personal data.
  6. Please provide a list of all third parties with whom you have (or may have) shared my personal data.
  7. If you cannot identify with certainty the specific third parties to whom you have disclosed my personal data, please provide a list of third parties to whom you may have disclosed my personal data.
  8. Please also identify which jurisdictions that you have identified in 1(b) above that these third parties with whom you have or may have shared my personal data, from which these third parties have stored or can access my personal data. Please also provide insight in the legal grounds for transferring my personal data to these jurisdictions. Where you have done so, or are doing so, on the basis of appropriate safeguards, please provide a copy.
  9. Additionally, I would like to know what safeguards have been put in place in relation to these third parties that you have identified in relation to the transfer of my personal data.
  10.  Please advise how long you store my personal data, and if retention is based upon the category of personal data, please identify how long each category is retained.
  11. If you are additionally collecting personal data about me from any source other than me, please provide me with all information about their source, as referred to in Article 14of the GDPR.
  12. If you are making automated decisions about me, including profiling, whether or not on the basis of Article 22 of the GDPR, please provide me with information concerning the basis for the logic in making such automated decisions, and the significance and consequences of such processing.
  13.  I would like to know whether or not my personal data has been disclosed inadvertently by your company in the past, or as a result of a security or privacy breach.
  14. If so, please advise as to the following details of each and any such breach:
  15. a general description of what occurred;
  16. the date and time of the breach (or the best possible estimate);

iii. the date and time the breach was discovered;

  1. the source of the breach (either your own organisation, or a third party to whom you have transferred my personal data);
  2. details of my personal data that was disclosed;
  3. your company’s assessment of the risk of harm to myself, as a result of the breach;

vii. a description of the measures taken or that will be taken to prevent further unauthorised access to my personal data;

viii. contact information so that I can obtain more information and assistance in relation to such a breach, and

  1. information and advice on what I can do to protect myself against any harms, including identity theft and fraud.
  2. If you are not able to state with any certainty whether such an exposure has taken place, through the use of appropriate technologies, please advise what mitigating steps you have taken, such as
  3. Encryption of my personal data;
  4. Data minimisation strategies; or,

iii. Anonymisation or pseudonymisation;

  1. Any other means
  2. I would like to know your information policies and standards that you follow in relation to the safeguarding of my personal data, such as whether you adhere to ISO27001for information security, and more particularly, your practices in relation to the following:
  3. Please inform me whether you have backed up my personal data to tape, disk or other media, and where it is stored and how it is secured, including what steps you have taken to protect my personal data from loss or theft, and whether this includes encryption.
  4. Please also advise whether you have in place any technology which allows you with reasonable certainty to know whether or not my personal data has been disclosed, including but not limited to the following:
  5. Intrusion detection systems;
  6. Firewall technologies;

iii. Access and identity management technologies;

  1. Database audit and/or security tools; or,
  2. Behavioural analysis tools, log analysis tools, or audit tools;
  3.  In regards to employees and contractors, please advise as to the following:
  4. What technologies or business procedures do you have to ensure that individuals within your organisation will be monitored to ensure that they do not deliberately or inadvertently disclose personal data outside your company, through e-mail, web-mail or instant messaging, or otherwise.
  5. Have you had had any circumstances in which employees or contractors have been dismissed, and/or been charged under criminal laws for accessing my personal data inappropriately, or if you are unable to determine this, of any customers, in the past twelve months.
  6. Please advise as to what training and awareness measures you have taken in order to ensure that employees and contractors are accessing and processing my personal data in conformity with the General Data Protection Regulation.

Thank you,

Ian

Zonal fare structure for Metrolink

Manchester Metrolink zones

As I thought Manchester Metrolink saw sense and are looking into a zonal structure for charges.

In memory of Paula Vettori

Paula Vettori memory
Paula was always full of love, joy and energy, guess which one she might be?

Today Moss Side Volleyball was informed that the heart of Moss Side Paula Vettori had died of a brain tumour.

I’ve know Paula for a long while and shes always been such a delight to play volleyball alongside and spend time with. Its been a shock but can’t even imagine the shock to her kids and husband.

She was always smiling and laughing. Especially when I accidentally thought she was Portuguese not realising she was actually Brazilian. To be honest, there was a lot we could all learn from her…

Rest in peace Paula x

If you know Paula or just want to help out the family and kids, please do add funds to the gofundme which was setup by the team.

Why a code of conduct matters

Paul Irwin at Thinking Digital 2018

I was at the excellent thinking digital conference yesterday when Paul Irwin from trylife took to the stage. Ironically he followed a excellent talk from Tatiana Simonian who made a clear call for more diversity and inclusion within the digital sector.

Sat in the 2nd row with my Nikon camera I was enjoying the story of his life and trylife (I was planning on talking to him afterwards) but I was caught in a state of flux. The words (ones which were not swear words) coming out of his mouth and seemed mismatched with his tshirt or choice of tshirt.

From my view it was a young female adult with a breast on show. Ok from my point of view quite tasteless but certainly something I can’t really imagine someone wearing at a professional conference. And I say that haven given talks about dating, love, sex and hookup culture. I was always sure to make my slides acceptable for a general audience. There is no way, even if I owned such clothes would I wear them on stage. This is all before I even looked at the conference code of conduct.

The last few conferences I have spoke at, I had needed to sign or least explicitly agree to the code of conduct in some way. I hadn’t really considered exactly why the speakers would need to do this, as the speakers should be onboard with this anyway? But now I totally get it.

I hasn’t noticed Thayer had already left for reasons I was still juggling in my mind.

Things got really concrete in my mind as Paul started talking about how he was helping young girls in trylife. I kept thinking how are you helping by wearing that tshirt? Did you not look in the mirror and think? Don’t you see the paradox which you have created?

This is when I started looking at the hashtag #tdc18 to see what others thought. This is when I saw Thayer’s tweets then I saw Christian’s one.

I was struck because she was right and I was a fool to sit there wondering about this paradox which was opening up in front of me. Heck I even gave Paul a token finger clap (indicating how I was feeling at the time) while others cheered around me.

Some people will argue that Mr Bingo’s talk was even more sexualised and he did use the words “fuck it” but the context was very different. The actions, words and clothes of Mr Bingo were not mismatched, like Paul.

The message he delivered was truly soiled by his choice of t-shirt. The swearing I could put up with as it wasn’t aggressive (although also against the code of conduct) and but I couldn’t take him serious, and I know thats on me. But his choice of a sexualised t-shirt reflected badly on him and a great conference; and thats not good!

After the break Herb Kim apologized to everyone on stage and later on twitter.

Someone close to me described it something like this…

People actions should equal what they say, especially on a stage.

What happened next is difficult to say as I wasn’t witness to any of it. But I heard clearly aggressive threatening behaviour from one of Paul’s friends at Thayer when she approached him to talk through things. The best thing he could have done was be understanding about things but judging by his twitter this was the last thing on his mind…

Thayer you have my total support and I’m sorry I didn’t join you when you stood up and left.

Updated – 25th May

Herb the founder of Thinking Digital has issued a statement on his medium to what happened at Thinking Digital 2018. It includes a apology from Paul Irwin about what happened on the day.

Updated – 30th May

Great news.

Clubbed: a visual history of UK club culture

Clubbed: a visual history of UK club culture

I kickstarted Clubbed a while ago, and a few days ago I got my copy in the post. Now its got a proud spot on my bookshelf.

Clubbed: a visual history of UK club culture

Of course its not just about the Hacienda but lots of famous UK clubs and dance nights. Its a beautifully designed booked which reflects the graphic design of the era.

Clubbed: a visual history of UK club culture

Very happy to be a backer along so many others.

Fuel 2018 was fantastic

FUEL 2018

What happens when you put a firestarter in the middle of a load of fuel? Only good things right?

The thing about FUEL which surprised me was how massive the conference was. The production values were huge too. It makes sense from Belgium’s biggest commercial broadcaster. Usually when conferences say 1000 people I expect it might be closer to 700 but FUEL was  either 1000 or very close to that. The conference in its 2nd year was a mix of their clients, invited guests from the broadcast industry and 200 broadcast students. All single track with Q&As broken out over 30mins during lunchtime allowing for deeper questions and answers without using up valuable time.

FUEL 2018

The speakers were great, really interesting talks and great people. There was a speakers dinner the day before the conference which really helps gel the speakers along with the rehearsals. I don’t usually like rehearsals but it was good to see the converted slide deck and also get the superstar dj walk through on the massively long stage. If only they had customised sound tracks, because prodigy’s firestarter would have been perfect.

FUEL 2018

Most of the event was captured in a live blog but heres a few pointers from the speakers

Dietmar Dahmen made some quite compelling points about creative disruption and getting too comfortable with the status quo. I liked the analogy to superman facing a new world with no grounding. The climax involved sawing a chair with pillows in half on stage with a chainsaw. This simply wouldn’t happen in the UK, I thought as I filmed from my phone…

Simon de la Rouvière confirmed my thoughts about using Blockchain & Smart contracts for music. Also made me consider the dating site/app I talked about in the past.

Cathy Hackl is a xR (VR/AR/Mixed reality) expert who taught herself how to code joined HTC vive as a evangelist. Now shes a xR Evangelist and is one of a few people who has seen Magic Leap but of course didn’t say a single word about it (I hear their NDA is deadly serious). Such a passionate woman and it was a joy spending sometime with her the day before talking about diversity.

Rana June talked about creating and generating emotional human data for better experiences. It was interesting especially with some of the quantified self work I’ve been involved in. Loved to have talked to her more and its a shame I will miss her while in London.

I can’t do justice to all the speakers who made Fuel 2018 incredible, all were great and the format is well thought out and executed. Like Futurefest 2016 I was pleasantly surprised by the pretty much everything. The only down side was Brussels traffic, which the organisers have no control over.