privacy – Prevents the smartphone microphone from listening in the background

It has recently been discovered that technology companies like Facebook and Microsoft are using people to listen to and transmit audio on Facebook Messenger and Skype to improve their AI. However, this only occurs when the app is active.

I'm a little worried about applications listening to background conversations. Just as some apps using Alphonso software heard TV sounds in the background with the smartphone's microphone.

Is it possible to prevent apps from accessing the microphone of the phone in the background but allow the use of the microphone when using the app (eg make a Skype call)? Maybe via an app / operating system that notifies you when your microphone is being used?

Privacy – How to buy Bitcoin anonymously and privately via Tor?

First of all, anonymity and privacy are two different things. Bitcoin is designed to be pseudo-simple – which comes close to anonymity, but instead of being completely anonymous, you are linked to your Bitcoin address or pseudonym.
You can not make a private transaction on the Bitcoin network, but you can try to be as anonymous as possible.

It is possible to run Bitcoin Core as a hidden Tor service and connect to such services.
The first step is to run Bitcoin Core behind a Tor proxy. This will make all outgoing connections anonymous, but more is possible.

Further instructions at Github:
https://github.com/bitcoin/bitcoin/blob/master/doc/tor.md

Privacy – USA HIPAA and New Zealand HISO from outside these countries

With the software product, we are developing a software product for storing and managing health records in Australia targeted in the first place to Australian health organizations. To do this, we must comply with, among other things, the Australian data protection principles.

I have two questions that are not immediately clear to me:

  1. This is a SaaS product that end users log on themselves. If someone from the US or New Zealand logs in and we accidentally save data from patients who are resident in those companies, are we breaking rules? Or is it a best practice to make sure that this is not possible?
  2. If we are willing to work with clients from these countries, do you also need to comply with their local health regulations? In other words, if we also want to address customers in New Zealand or the US, is this also a requirement that we address to HIPAA, HISO (and all other mandatory requirements), even though we are an Australian public company?

Privacy – Facebook knows about my search history in other browsers

I'm using a private IE window to search Facebook (theoretically, no data is stored locally). I log in to Facebook once every 6 months.

Two months ago, I used Chrome on the same computer to search for Dell computers, a specific model.

Both searches were done on the same network.

I signed up for Facebook today, and lo and behold, ads for that particular Dell model (far too specific to be coincidental). How did Facebook get this information? Is my ISP selling all my search history data? Is there another mechanism that I do not know? I thought the browser data was isolated.

What information is available in the privacy currencies?

To my knowledge, Monero is the "most private". It disguises the number of coins on each account in the blockchain (you will not find a monero richlist), but most importantly, it obfuscates by default in each transaction: the sender, the recipient, and the amount.

One of the bugs in Monero is that by default the IP address is not obfuscated, but someone using TOR or i2p would still be able to do it. But monero team will do this in the future with the release of Kovri.

I do not like Zcash because there is a 20% block reward for the creators of the coin built into its block chain, it does not seem very decentralized, but I do not know much about its technology, just that it has a rich list so it does not work for me (If anyone knows my address, he knows how many coins I have.

Verge: This coin obfuscates only the IP address of the user, the information is pretty much linkable. And it's a fork from Dogecoin & # 39; – & # 39;

Hyphen: Not much privacy, the majority of users do not use the privacy option. So, if you're one of the few people who use them, someone can link you to a transaction.

Pivx: Did not learn much, but has a rich list …

Privacy – If a user sees an email from another user, is it DSGVO compliant?

I want to give a logged in user the ability to search for other users based on their exact email address. The search input is passed asynchronously by Javascript, leaving the e-mail in the server logs, and so on. The connections are only HTTPS (secure = true). I am based in Austria, so I have to act in accordance with our GDPR and would like to know:

Is this treatment in the green, gray or red area?

PS: It's a self-coded PHP application and a SQL database on a root server.

Privacy – Can I send sensitive information via HTTP GET if SSL is still DSGVO compliant?

I want to give a logged in user the ability to search for other users based on their exact email address. The search input is passed asynchronously by Javascript, leaving the e-mail in the server logs, and so on. The connections are only HTTPS (secure = true). I am based in Austria, so I have to act in accordance with our GDPR and would like to know:

Is this treatment in the green, gray or red area?

PS: It's a self-coded PHP application and a SQL database on a root server.

macos – create URL for system settings to privacy files and folders in 10:15 Catalina

In macOS, you can create a link to the Automation section of the privacy window in System Preferences at the following URL

x-apple.systempreferences:com.apple.preference.security?Privacy_Automation

Does anyone know the equivalent of the new section "Files and Folders" in Catalina or a way to bring macOS to print all the links?

I tried to run the apple script mentioned in a similar question through a link to full disk access in Mojave, but this does not seem to return all sections (eg, input monitoring and files and folders).

Privacy – The employer stores personal information in plain text in a "data warehouse".

I'm not sure I posted this to the right community, but the organization I'm currently working on currently uses a single SQL data warehouse bunch of tables from different sources for different purposes. This data warehouse has (as far as I can tell) two or three environments. Dev, QA and production.

Recently, I was granted access to the Development Data Warehouse SQL Server for a software development project I'm working on, and I found a set of 2012-2013 employee confidential data tables in plain text (including National Insurance Numbers, Next of kin details, qualification details, addresses, telephone numbers, license plates, etc.).

This development server is accessed by a number of developers in my organization (including myself) for various projects.

1) I do not think that this data should be stored in the development environment (I think that at some point everything was copied back from the production server).

2) I do not think these details should be stored in plain text so anyone can see them through a simple SQL query.

3) I do not think that I and other developers in the organization should have free access to these tables.

I'm pretty sure my employer does not know this and stores all this information in clear text in the production environment. I also think that this violates a kind of privacy or GDPR law.

I talked to my boss about it, but they seem to gloss over it and ignore the problem / do not want to get involved.

How do I report this without even getting in trouble to view these tables?