Dear all, the proposal for linking the newly created subnet with only european node machines with the subnet type “european” is submitted for voting. Please find it under proposal 126391. Once this proposal is approved, the creating of the european subnet is completed.
Feel free to continue to discuss and give your feedback any of the aspects of a european subnet.
if the data is anonymous, it doesn’t need european servers to be GDPR compliant. ← this covers most current published ICP dApps and was important to mention to avoid misinformation.
if the dapp stores personal information, it requires the european subnet to be GDPR compliant.
but encourage dApps to not collect user information and/or anonymize user information.
IMO a good long-term strategy would look like this:
create an european subnet now.
incorporate rules to prioritize dApps in the European subnet that actually require personal data collection to function. Avoid those that simply didn’t bother to keep user data anonymous and/or unaccessible, because that could alienate users and hurt ICP.
optional: consider starting the work on getting ICP recognized as GDPR compliant by the government, because that could take years.
It would be amazing if ICP was the first blockchain to be recognized as GDPR compliant.
I guess if a cautious European entity starts using the European subnet, they will start gaining experience of blockchain and with that their confidence will grow and maybe they will make the next step. Sometimes one needs to go where the customer is, even if that place has questionable advantages.
DFINITY NexGen Canisters are the foundation for a European L-1, DLT Cloud Trust Ecosystem to monetize the world’s most robust cyber security data protection laws!
Designing a Use Case for regulatory-compliant multi-canister solutions will attract mass adoption to the IC!
Any clarification on these EU privacy directives assumptions will be well received.
If GDPR regulates companies, organizations or individuals that process the personal data of natural persons in the EU and defines anonymous data as personally identifiable information that can’t directly or indirectly identify a data subject:
Wouldn’t processing the unique ID wallet address in an IC Canister for a user in the EU trigger GDPR compliance obligations?
Wouldn’t processing pseudonymous IC identifiers representing a user within the EU require a node provider to comply with Schrems II’s SCC directives and Ch. 3 (Art. 12-23) of GDPR?
What about specifically for the IC identity used by a fiduciary of non-canister principal ID accounts?
Would the IC decentralized ID holder be considered a Joint Controller per Ch. 4, Art. 26?
Wouldn’t a European legal entity be required to offer regulatory-compliant data processing services to individuals in the EU?
Would an EEA-based node provider hosting a canister storing personal data attributes on an EU Subnet be subject to ePrivacy and DSA directives under GDPR?
The EU Data Protection Board’s assessment of the new EU-U.S. data transfer framework has fueled a lot of uncertainty, especially in light of last year’s new sensitive data provisions by the Swiss revFADP.
Canister-based EU subnets may add the missing technical link to the CJEU’s recurring legislative attempts—to harmonize data privacy regulations across the Digital Single Market.
The learning curve of the IC is making it challenging to receive clarification on these questions from EU compliance advocates.
IIUC most if not all these exploits require physical access. They are generally difficult to pull of. GDPR requires you put security controls in place. I doubt that the history of secure enclave vulnerabilities would be considered sufficient to justify that AMD SEV-SNP is insufficient to protect PII from node operators.
That said, the IC will also provide the alternative of VetKeys in case you have greater confidentiality requirements than SEV-SNP could guarantee. The design of your dApp needs to allow the VetKeys approach.
Hi, I realize this discussion is quite old, but one thing that is unclear to me (and it may be down to my still limited understanding of ICP) is how can a person’s data, once on the blockchain be, deleted? There is a right to be forgotten, which means that a company has to delete your data if you request it, unless they have a justification not to (e.g. legal investigation). But how is this done, if your data has already been engrained in the blockchain?
Unlike in various other blockchains, once finalized block have been processed, the blocks are discarded, i.e., only the state is persisted. So, data can be deleted by removing it from the corresponding canister’s state.