Not many people realize that log files on users' devices contain personal data, but... #1659
Description
Hi everyone,
I took a look around here and was pleasantly surprised to find a message at #1639 stating that, in accordance with the GDPR's data minimization requirement, the app's log files are stored exclusively on the user's device and are not transferred to a cloud via the internet.
Not many people realize that log files on users' devices contain personal data.
However, this raised a few questions for me: Why do you store phone numbers if, as you write, they are processed solely for the purpose of registration, during which you forward the phone numbers to a digital communications services company for order processing?
How are the costs for this service paid, for example with the data?
-Why isn't the phone number simply deleted after successful registration, since the purpose has been fulfilled?
What I have learned about the process so far is that you use a hash token of the device ID, which is generated during registration. This token is constantly transmitted during activity in the app through login, and the device ID can be derived from this token.
However, this device ID is used for all sorts of things and is collected in a similar way by other providers, so this method of pseudo-anonymization would be useless. Together with other data pools, correlation would be possible, wouldn't it?
I also don't understand how such a secret ballot/vote is to be implemented.
-If you receive tokens together with the votes, you can always trace who voted for what. How do you intend to prevent this?
-Are the votes specially encrypted when they are sent to you together with the tokens? Unfortunately, this is not clear from the drawings provided for the procedure.
One of your goals is to gauge the mood during decisions in the Bundestag, which requires data analysis. Here, too, it is difficult to understand exactly which data this analysis refers to.
It is also not conclusively explained whether additional data will be collected from third parties or whether order processing will take place again.
Unfortunately, it is not clear to me how you intend to achieve all of this anonymously with the tokens that are constantly being sent.
Could you write something about this or provide a link where I can find the information?
Thank you!