1) Be nice and; have fun
Doxxing, trolling, sealioning, racism, and toxicity are not welcomed in AskLemmy. Remember what your mother said: if you can't say something nice, don't say anything at all. In addition, the site-wide Lemmy.world terms of service also apply here. Please familiarize yourself with them
2) All posts must end with a '?'
This is sort of like Jeopardy. Please phrase all post titles in the form of a proper question ending with ?
3) No spam
Please do not flood the community with nonsense. Actual suspected spammers will be banned on site. No astroturfing.
4) NSFW is okay, within reason
Just remember to tag posts with either a content warning or a [NSFW] tag. Overtly sexual posts are not allowed, please direct them to either [email protected] or [email protected].
NSFW comments should be restricted to posts tagged [NSFW].
5) This is not a support community.
It is not a place for 'how do I?', type questions.
If you have any questions regarding the site itself or would like to report a community, please direct them to Lemmy.world Support or email [email protected]. For other questions check our partnered communities list, or use the search function.
Reminder: The terms of service apply here too.
Logo design credit goes to: tubbadu
Every time we notified anyone about a potential illegal breach of gdpr that could get us fined or sued, admin pretended they had never been informed because the changes would take too long and collide with their plans to "revamp everything, reinvent the platform, and rebrand".
I should have whistleblown them myself if it were not for the fact that doing so would probably get some previous employees fired rather than hurt the company.
I know this thread is old but: so many HIPPA violations, oh my God. I am a pediatric therapists/child psych, and the clinic I used to work at constantly stored client data in the most insecure ways, and therapists and staff would discuss client names, diagnosis', address, EVERYTHING openly in the break room. I complained at one point, but it went nowhere. Turns out nobody cares, lol. They also frequently ignored the best interests of our clients to maximize profit from insurance (leaning towards fraud). I ultimately left the company when my boss blatantly violated the safety of one of my clients by refusing to send her home when she had a fever of 104 F. Sure, working with kids means everyone gets sick a lot, but when the child is THAT sick, they need to be in a hospital, not in a hot, cramped room with a therapist.
We didn't investigate an online theft from any bank account unless it was over US $100k.
Mike from Tom's Landscaping smokes a bowl of reefer in his car at lunch break every day.
Sorry Mike someone had to say something.
I work in pest control and 99% of the shit we use. You can buy without having a license. The license just covers us to use the products on other people's houses responsibly. If you really want to do pest control, you only need a few chemicals and they are all easily obtainable on Amazon.
Nice try fbi
Worked for an online poker company. The information they stored from users devices was insane. Registration and connection ips, mac addresses, disk serials. Basically any identifiable piece of pc information they stored in their database so they knew who was logging in where and from what computer.
So, purely hypothetically, if I used three separate computers, connected with 2 of them through VPNs set to different locations, would they look like 3 different players, even if located in the same room?
Just remembered another one:
Have you ever had an anonymous survey sent to you by your work or by a company your work has hired? They're not anonymous. Management knows what your opinions are and will use them against you.
I worked for a consultant that would try and help fix businesses. The worst example I can think of was when I saw one person had answered a survey question saying that their employer had a "blame culture". Rather than trying to work on the processes or address why something had gone wrong, staff would start pointing fingers to keep out of trouble. This didn't fix anything and only made people spend all the time covering their posteriors.
The manager called a general meeting of everyone at that site and then singled out the employee who'd mentioned the blame culture, blaming him for saying there was a blame culture. The employee then pointed out that they'd been told, in writing, that the survey was anonymous. That employee called the manager a liar and then she lost control of the meeting, with lots of employees calling her a liar and several storming out. They weren't in business the next year.
You work in the US, right?
I’m so sure that this would be absolutely illegal in the EU. Privacy laws are rather strict here and I can’t imagine that it would be legal in any way to say that you’re doing an anonymous survey if it isn’t actually anonymous.
I live in the UK.
The consultancy never claimed that the surveys were anonymous. Pretty much every manager did when they sent it out to their employees. I guess lots of bosses in the UK have no problem with lying to their employees.
Privacy laws are only as good as their enforcement. I've seen first hand the slap-dash attitude the NHS has to patient confidentiality and the police using databases for their own personal reasons. I've also experienced UK primary schools violating confidentialities. No repercussions for any of them.
If you were to reveal this information while you were still employed, would they have had legal repercussions against you as a whistle blower?
No legal repercussions.
I did some consultancy for the NHS (hint for anyone in IT: DON'T) and tried to whistle-blow the absolute shocking state of patient confidentiality. Nurses would routinely look up things to use or for gossip or leverage over people. For example, one nurse was able to access patient details to help her friend get ammunition in a divorce and custody battle. Another used it for playground gossip against a mother who had offended her and spread around that she was on antidepressants. When I started the complaint (giving multiple examples), they closed ranks and decided my claims were due to "miscommunication" and/or were fabricated. I could prove this data had been accessed and who had accessed it on the system's audit trail. Nothing was done. They have policies in place stating not to do that, but they were routinely ignored.
Same with the police. Officers were using police databases to stalk and harass exes, exes new partners or neighbours who had pissed them off. The Independent Police Complaints Commission are a joke and are staffed by ex police officers who had personal relationships with the people involved. The complaint was closed and I received a letter months later thanking me for withdrawring my complaint. I never withdrew the complaint and was informed that I had and I was unable to open it up again. This was 10 years ago and I haven't worked for any police department since or relied on the police for anything.
GDPR and data protections laws are all well and good, but without enforcement they are meaningless.
I worked for a company that had an expensive San Jose lease during the .com bubble. When they decided they needed to get out of that lease, they folded the company - “fired” everyone, then re-hired everyone under an independent second company that was owned by the parent company. Sketchy, but not really surprising…
When they re-hired me, they didn’t have me sign any NDAs. All the old NDAs were with the company that folded, not the parent company. Some days I wish I had been unethical enough to sell off their source code to a competitor.
