On woensdag 27 mei 2020 19:42:34 CEST Knurpht-openSUSE wrote:
Op woensdag 27 mei 2020 19:30:57 CEST schreef Erwin Lam:
On woensdag 27 mei 2020 15:47:40 CEST Gerald Pfeifer wrote:
On Wed 2020-05-27, Patrick Shanahan wrote:
- Maximilian Trummer firstname.lastname@example.org [05-27-20 08:59]:
I just got a mail titled "Webinar: Nonstop-IT sicherstellen" (ensure nonstop IT) to the mail address I use for openSUSE stuff from email@example.com.
I never signed up for any SUSE marketing mails. Did something during the account migration go haywire?
Aparently so. :-(
I received the same and unreadable for my uneducated eyes ...
The openSUSE Board, too. I'll raise this internally.
And no possibility to unsubscribe from these marketing e-mails or to delete your account. Has SUSE ever heard of the GDPR?
Please tone down. There is a link to the Subscription Centre that offers a default checked Please unsubscribe me from all marketing and blog communications. Click Update Preferences and it's done.
Why should I tone down? I have an account for the SUSE bugtracker.
Suddenly that account is being used for SUSE "customer" and commercial purposes. I am not a SUSE customer. You are now using the data for a purpose for which it was not collected. ---> GDPR violation.
The data of that account was handed over to an american data processor without my consent. ---> GDPR violation.
I logged in into this customer account and noticed that a lot of items are mandatory (instead of optional) but, since contact with customers goes mainly through e-mail, are not necessary to deliver the service. So, you are collecting to much data. ---> GDPR violation.
There is no posibility to remove that data or to delete the "customer" account. ---> GDPR violation.
Next the e-mail address of that account is being used for a commercial mailing for which I did not give my consent either. ---> GDPR violation.
There is no unsubscribe link in the commercial mail. There is a link called "Rückruf anfordern" but that means "Call back", not unsubscribe. ---> GDPR violation.
So, I am really wondering if SUSE staff knows the GDPR and got GDPR training. Was your Data Protection Officer not involved in this migration project?
Regards, Erwin Lam