Stories
Slash Boxes
Comments

SoylentNews is people

Your business passed the GDPR challenge — but SCA is next

posted by mrpg on Tuesday May 14 2019, @10:00AM   Printer-friendly
from the ohoh dept.

An Anonymous Coward writes:

Europe is bracing itself for a big shake-up in how we pay for things online, which will have significant consequences for businesses across the region. Similar to how GDPR hugely impacted how millions of organizations handle personal data when it was enforced last year, Strong Customer Authentication (or SCA) will have profound implications for how businesses handle online transactions and how we pay for things in our everyday lives when it is enforced on September 14.

SCA will require an extra layer of authentication for online payments. Where a card number and address once sufficed, customers will now be required to include at least two of the following three factors to do anything as simple as order a taxi or pay for a music streaming service. Something they know (like a password or PIN), something they own (like a token or smartphone), and something they are (like a fingerprint or biometric facial features).

https://thenextweb.com/podium/2019/05/10/your-business-passed-the-gdpr-challenge-but-sca-is-next/

Original Submission

 
This discussion has been archived. No new comments can be posted.
Your business passed the GDPR challenge — but SCA is next | Log In/Create an Account | Top | 65 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 0) by Anonymous Coward on Tuesday May 14 2019, @05:31PM (2 children)

    by Anonymous Coward on Tuesday May 14 2019, @05:31PM (#843499)

    there's a bit in there that says you have to make allowances for people to delete their accounts and related info. We don't have that functionality in the site, if we did it manually it would break every last story page that the person had ever commented on, I won't have time to code that functionality into the site before the deadline

    It doesn't have to. At the risk of being a double-talking rules-lawyer, "Delete" doesn't necessarily mean to delete.

    As an example, I could imagine you create a new account "Anonymous Deleted," and whenever anybody deletes their account you just change all their comments to be associated to that ID instead. Admittedly it is more complicated than that for many reasons, but I don't see this as necessarily being impossible to implement.

    Whether the (work+risk)/reward ratio is worth it, though, is another question... as noted by your added personal opinion, among other things.

    Speaking as a privacy-conscious anonymous coward, though, I for one do appreciate it when places give the ability to delete data.

  • (Score: 2) by The Mighty Buzzard on Wednesday May 15 2019, @11:13AM (1 child)

    by The Mighty Buzzard (18) Subscriber Badge <themightybuzzard@proton.me> on Wednesday May 15 2019, @11:13AM (#843772) Homepage Journal

    Yes, that would be exceedingly easy to implement. And it would make the value of the affected conversations pretty much nonexistent.

    Being able to delete data that you've made public isn't a privacy issue, it's a rewriting history issue. I appreciate the hell out of privacy but this isn't about privacy.

    --
    My rights don't end where your fear begins.

    • (Score: 0) by Anonymous Coward on Friday May 17 2019, @05:43AM

      by Anonymous Coward on Friday May 17 2019, @05:43AM (#844622)

      Wait. Hold on. Are you saying that everything I have posted here is publicly visible?
      Noooooooooooooo