Privacy

cross-posted from: https://slrpnk.net/post/13145612

(edit) Would someone please ship some counterfeit money through there and get it confiscated, so the police can then be investigated for spending counterfeit money?

cross-posted from: https://sopuli.xyz/post/4070141

So I've been using Kagi for a while now as a paid search engine. I always thought it's $25 a month plan was a little steep for search, but a) I got work to pay for it, and b) startpage nee google was getting less and less useful, and bing and whatever used it has... well been worse for me always.

Anyway, I just got told that they've now adjusted their pricing / added features to Ultimate, and I think (at least now) that's actually added a lot of value if you're into the more advanced LLVM / AI models / chat. I have also been paying $20 a month through work for ChatGPT Plus. I might drop that because Kagi now lets you chat with / use GPT4 as well as Claude2 and a Google LLVM model with the one $25 a month, in addition to all the search and AI Search (with sourcing) together.

I don't know how well paid search is going to ever do - it might be a short term tool. But for now, not having ads in the search, a straightforward pay for service model that seems to work just as well with their stated privacy goals, and getting multiple AI LLVM is pretty cool "one stop shopping" if you will. I also like giving a shot to alternate models that might be more privacy focused.

(Also, I am aware that using an iPhone is not great for privacy. Please stop telling me.)

cross-posted from: https://slrpnk.net/post/2475061

I went to a cafe in Amsterdam which turned out to not only be cashless, but their payment processor was “Zettle”. Zettle is owned by #PayPal (who shares customer data with over 600 corporations).

So my question is, apart from the expected privacy consequence of your bank & the recipient’s bank recording your transaction, what does Paypal walk away with? Paypal is a data-abusing US-based company. But OTOH the shop is in a #GDPR region. Does the GDPR give any protection in this case?

IIUC, customers consent by default to their data being processed by the merchant & whoever the merchant hires (Paypal), and from there whoever paypal shares with & on down the endless chain. The only notable GDPR protection I can think of is that the data must remain in the EU. So the transaction data cannot be sent to Paypal’s servers in the USA -- correct?

BTW, I asked the owner why he trusts Zettle & also why he does not accept cash. He conceded right away that he didn’t like it either. He said he’s cashless for security and that when he looked at a number of electronic payment systems, Zettle was the cheapest. For me, “cheapest” is a red flag. It’s probably cheap because the data is probably being monetized.

Concrete question: if an American feeds a US-issued credit card into a #Zettle terminal to buy a creme-filled artery-hardening pastry in Amsterdam, is there anything to stop Paypal from doing the processing on the US-side of the transaction before selling that info to a US health insurance company?

I am currently a LibreWolf user, but I am also aware of Arkenfox User.js, which I am led to believe offers similar features.

Which is better?

uh-oh

Searching for replacement for Bibliogram, I found an website called imgsed.com .

It was sufficient to my needs.

One problem was that it seemed to fetch only a few comments of a post.

Here's the website's own About page:

imgsed.com is an online instagram backup tool that helps users save instagram photos through the instagram public API.

imgsed.com can't verify user information, so you need to pay attention to the copyright when downloading photos.

If you do not wish to be downloaded, please submit your information remove account

ETA:

Apparently it has crazy much ads, so use of adblocker is very much advised!

Check the article for the relation to privacy

Does there exist a smart scale that respects privacy? perhaps it has an app that will be able to show trends and history but does all processing in app or if it does go to a server then the company can be trusted with that data?

A look at diversity of authoritative NS records in gTLDs.

I think we need a viable alternative that is not controlled by SPOF.

French data protection authority fined Discord for:

Failure to define and respect a data retention period appropriate to the purpose (Article 5.1.e of the GDPR)

Failure to comply with the obligation to provide information (Article 13 of the RGPD)

Failure to ensure data protection by default (Article 25.2 of the GDPR)

Failure to ensure the security of personal data (Article 32 of the GDPR)

Failure to carry out a data protection impact assessment (Article 35 of the GDPR)

Not surprising..