One day to go until the GDPR act comes into effect. I decided to check Twitter for some epic #GDPRfails and here is what I found...

• People seem to be getting too many emails
• People did not see this tweet on how to filter GDPR emails
• People do not understand what spam is (when you sign up for a website and don't read the TOS, it is NOT spam when the website emails you about the change in TOS or Privacy Policy).
• Many big tech firms do not understand GDPR

Either way I think it is good to increase awareness and discussion about the privacy and security of our data. This list of GDPRfails shows how even the largest tech companies with biggest budgets are failing at protecting your personal data and information.

The Yahoo GDPR consent page links to several HUNDRED boxes to click to opt out of their advertising partners one by one 😭 #Oath pic.twitter.com/tODepKr8a3

— Rich Greenhill (@RichGreenhill) May 21, 2018

Personal data of millions of Lebanese citizens openly available on https://t.co/rtmmbX7W8K, many of those holding another European nationality
PII include first & last name, mother & father’s names, birth date & Religion#GDPR #Lebanon #DataPrivacy #LebaneseElections2018 #fail pic.twitter.com/8alqsdxMAZ

— Hadi El-Khoury (@helkhoury) April 30, 2018

#GDPR #fail @pizzahut, No one reads the terms and conditions, do they? https://t.co/22RbAOui5X pic.twitter.com/PcootvzvLK

— Kevin Lewis (@Kevin_S_Lewis) May 15, 2018

Trying to understand my other options on @instagram when #gdpr goes into effect. Oups, broken link #404 #fail - https://t.co/twxUuwRgUc pic.twitter.com/OJQpVrIrI5

— Peter Svenonius (@PeterSvenonius) May 17, 2018

Oh and the best part? The consent page requires me to ENTER INFORMATION I ACTUALLY DON'T HAVE in order to "update" my consent.

I really hope they spam me after the 25th, tbh. I'm curious how difficult it'll be to make a formal complaint.#GDPR #GDPRfail @CABmotors pic.twitter.com/7ONCFHM6PL

— Probably Not a Russian Tumblr Bot (@richsentme) May 18, 2018

@Flickr @SmugMug Was this actually an attempt to be GDPR compliant? Because if it was, it fails horribly. pic.twitter.com/uAZFmtQmui

— Steve Trewick (@SteveTrewick) May 23, 2018

Oh, @SamsungDK . Sending a request for continued mail consent and linking to a website with a cert from a blacklisted Certificate Authority…. #gdpr #certificate #fail pic.twitter.com/ZgvCBmjtBd

— Flemming Mahler (@mahler) May 17, 2018

@BoschGlobal epic fail Bosch. Trying to comply with gdpr and you send me an email with someone else's details!! pic.twitter.com/5Bf5XaRDs4

— eff_tee_ (@eff_tee_) May 20, 2018

"If you unsubscribe, we'll still send you our marketing stuff because we are so full of ourselves." -- @WorkplacebyFB, #GDPR & how to fail miserably at humility (and law). pic.twitter.com/MnXdCAnGsA

— Yann Heurtaux | 🎩🌱🐜🔗 @🇨🇭 (@shalf) May 17, 2018

Just registered with @clubwifi in #Devon.

Username & #password sent in plain text.#gdpr #fail #security pic.twitter.com/nNBThusQml

— Paul Moore (@Paul_Reviews) May 18, 2018

@Ryanair Had an email just now saying you have updated your privacy policy and I wanted to go and read it?! I got this .... GDPR fail!? pic.twitter.com/uWLMA8azJe

— PeteyUKok (@PeteyUKok) May 22, 2018

Hey @dlvrit your privacy@dlvr.it email doesn’t work #GDPRfail pic.twitter.com/TOLywUQOBo

— Laura J. Wilkinson (@laurajwilkinson) May 24, 2018

#GDPR fail of the mid-week: being sent the same email three times from @VirginTrains with no link to opt out #cheersguys

— Yema (@YemaTheObscure) May 24, 2018

You are doing it WRONG @nytimes #cookies #GDPRcompliance #GDPR#GDPRfail #uxfail pic.twitter.com/2y5NaXiiXc

— Philipp Kursawe (@pkursawe) May 24, 2018

What have you done @vitlhealth 38 others with my email address now #gdpr #gdprfail pic.twitter.com/dt6ATQwvHr

— Dan Patel (@dan_patel90) May 24, 2018

#GDPR #FAIL @VITLhealth sending out a mass email saying they care about privacy, while visibly copying you in with loads of other people on the same email!!! #GDPRday #GDPRfail pic.twitter.com/2gbdFF0Csa

— Chris Kyle (@ChrisPKyle) May 24, 2018

Just had a #GDPR email telling me how seriously a company takes keeping my data secure. All the recipients' email address (including my own) are visible in the 'to' box... #GDPRfail

— Dave Pannell (@daviepannell) May 24, 2018

GDPR fail of the dai from @coinbase - the policy says I have to opt-in, doesn't say I have to opt-out, so the second button is 100% useless. No action = opt out! pic.twitter.com/VV3mthJDEI

— Andrea Grandi (@andreagrandi) May 19, 2018

.@FootLockerEU .@FootLockerEU How can we trust you with our data when you can't be trusted with copywriting?#GDPRfail pic.twitter.com/sjJN3qSo3E

— Max C (@mrmaxhax) May 24, 2018

#TuesdayThoughts . You life in US or CA? Your #privacy should be respected? Oops, perhaps this company fails, or? What are they doing with your data in the background? #GDPR is complex, but not a monster - @JobjetHQ @Peter_Schaar @JanAlbrecht @KonstantinNotz pic.twitter.com/TmvNROpA82

— Daniel HvG (@CISOcheckedIn) May 15, 2018

This was a commissioned painting of a street sign for a main Toronto intersection where Bathurst meets Lakeshore. See the steps below for how I created this.


Getting the perspective right is one of the hardest parts of this. Faint pencil lines ensure that I can get this right before I work on the outline.

Once the outline is right, I can start to colour. All of my art is painted using shellac and earth pigments. I do not purchase plastic products unless there is a gun to my head.

Worth it in the end as we have a nice painting with leaves almost all the way to edges as requested by client.

I have done several of these hand painted street signs now. Check out some others below:

• Queen St East and Sackville
• Wallace Ave and Emerson Ave

Businesses, large and small, are in the midst of preparing for compliance with the Europeans Union’s new data privacy laws: The General Data Protection Regulation, or the GDPR, which will go into effect on May 25, 2018.

What is it?

It was passed by the European lawmakers to create a harmonized data privacy law across all the EU member states. Its purpose is to:

• Support privacy as a fundamental human right;
• Require companies that handle personal data to be accountable for managing that data appropriately; and give individuals rights over how their personal data is processed or otherwise used.

In a nutshell, GDPR defines personal data as “any information relating to an identified or identifiable natural person.”

Okay, so what does that mean?

In addition to the kinds of information you might think about – name, address, email address, financial information, contact information, identification numbers, etc., personal data can in some cases be information related to your digital life, like an IP address, geolocation, browsing history, cookies, or other digital identifiers.

It also could mean information about a person, including their physical, mental, social, economic or cultural identities.

In short, if information can be traced back to or related in some way to an identifiable person, it is highly likely to be personal data.

Does it apply to me?

Individuals, companies, or businesses that have a presence in the EU or, if no presence, offer goods or services to, or monitor the behavior of, individuals in the EU need to comply with this law. Please consult with your own legal counsel about whether GDPR applies to you and your business.

After working with Ben Smith in California, I was instantly inspired to start a podcast. Ben's Podcast, the Voice Entrepreneur is an interesting listen and hits on some great ideas about what the future holds. For my podcast I am going to focus on Privacy as much of my work at Thexyz seems to revolve around Privacy. I will also hit on other topics too but with Facebook in the news, GDPR around the corner, Privacy seemed like a good choice. Episode 1 was published today and you can have a listen below.

Subscribe on Anchor and Pocket Casts. More services coming soon!


Here is the transcript for those that prefer to read....

Hello, welcome to Perry on Privacy Before I begin I would like to point out that this is my first podcast, all opinions are my own and I have no idea what I am talking about. 

While this podcast is mostly about Privacy, I will hit on other areas in my skill-set such as; email, cyber security, spam, domains, hosting and of course your questions. As many of my know, my background is with Thexyz, where I have helped thousands of people just like you, take control of their privacy. 

If you are the kind of person who thinks "I have nothing to hide" when you hear the word privacy. This podcast is for you. If you are already concerned about your privacy and want some tips and tricks on privacy and security, this podcast is for you. If you think that the SSL lock next to a URL of an online store is actually a shopping bag. This podcast is for you. If you are a person who just likes hearing someone with a British accent speak. Then this podcast is for you too. 

My topic for today is the "late majority" Over the past few years I have attended a number of tech conferences and heard this term thrown around. It used to mean people that were older, didn't grow up with technology etc. Where as today it actually includes everyone. The reason for this is that many young people are not grasping the important aspects of technology. A British study in 2015 found that most teens could not tell the difference between a google ad and a search result. This is very concerning as what difference does it make when we have companies like Facebook and Cambridge Analytica in the news if we can't tell the difference between a paid ad in the first place. 

The late majority includes everyone and we all have an invested interest in each others security and privacy. Cyber security cost the global economy $600 billion last year and this very much a growing problem. Let's make America use strong passwords again! Please subscribe to this podcast for more tips tomorrow. Be brave, be proactive. Bye for now.