undefined | Better HN

0 pointsraphaelj7y ago0 comments

Indeed.

Also, I remember that when the GDPR got implemented in the EU, I had to agree on a new contract amendment in which the company legally had to list all the data that was collected on its employees (e.g. emails, personal info like age, address and income, ...).

0 comments

1 comments · 1 top-level

freehunter7y ago

GDPR includes an exemption for companies logging information that is required to maintain the security of their infrastructure. This includes things like logging employee's DNS requests, AV logs, DHCP logs, web proxy, etc. Things that are fundamental to ensuring the security of the corporate network and the data it contains.

That means even under GDPR, your employer could (and should) monitor what you're doing on their company-owned assets.

j / k navigate · click thread line to collapse