Main Area and Open Discussion > General Software Discussion

Ghostery Tries to Comply With GDPR, but Ends Up Violating GDPR in the Process

(1/1)

app103:
The company behind Ghostery, a privacy-focused browser and an ad-blocking browser extension,  has apologized for a technical error that occurred last Friday when its staff was sending out GDPR-themed notification emails.

According to numerous user reports, Ghostery sent out emails that exposed the addresses of other users.

The emails were sent to batches of 500 users at the same time, and every user in each batch was able to see the email addresses of the other users.
--- End quote ---


https://www.bleepingcomputer.com/news/technology/ghostery-tries-to-comply-with-gdpr-but-ends-up-violating-gdpr-in-the-process/

tomos:
The emails were sent to batches of 500 users at the same time, and every user in each batch was able to see the email addresses of the other users.
--- End quote ---
-app103 (May 31, 2018, 02:43 AM)
--- End quote ---

:o oooh, that was a bad mistake for anyone, but especially coming from a "a privacy-focused browser and an ad-blocking browser extension"

Deozaan:
How does Ghostery have users email addresses? I used Ghostery in the past and it didn't require me to create an account or anything.

rgdot:
I assume syncing settings. Ghostery also has 'added functionalty' when you sign up but I have never seen an explicit mention of what it is (I haven't signed up to try to see it myself).

If it is indeed syncing it once again highlights the achilles of internet for me. In the past on DC I have mentioned online syncing of passwords is a bad idea and in today's everything is eventually hacked world I wouldn't do it, but signing up for ghostery syncing is, at the risk of getting flamed for saying it, lazy

Ghostery Tries to Comply With GDPR, but Ends Up Violating GDPR in the Process

Navigation

[0] Message Index