Privacy concerns in the online world aren’t new. We already know that big tech collects our personal data through “free” services, that data brokers profit off that data, that AI is scraping our social media for added profiling, and that governments utilize various surveillance technologies. But with the rapidly changing global landscape of threats to freedom of expression and personal liberties, there is a new level of concern for the need for privacy. Here, we point to some recent developments that may have an impact on privacy protections and personal data. Below you will also find a list of safe and private alternative services.
In our previous post on the AI Act, we concluded with a remark concerning the AI Act and the GDPR (General Data Protection Regulation): Are the two regulations aligned, or are there contradictions?
In this post we want to explore this question.
NOTE: When speaking about personal data and data subjects in the following, it is in the context of the GDPR. In addition, our concerns about AI and GDPR are mainly directed at general-purpose AI systems (GPAI-systems)where large amounts of (scraped) data is used to train the GPAI-modelon which the GPAI-system is built. (See box F below for exact definitions.)
The scope of the AI Act is comprehensive – it applies to any actor and user of AI systems within the jurisdiction of the European Union law, regardless of the actor’s country of residence.
As the GDPR, the AI Act is a regulation, contrary to a directive, which means that EU member countries have to implement it in their own legislation with only minor adaptive changes. The AI Act has EEA (European Economic Area) relevance as well, which means that the AI Act has to be implemented in Norwegian legislation – as the GDPR was.
Intersection between AI and Privacy regulation [Source]
The diagram shown illustrates the situation: There are some obvious overlaps because AI systems may process personal data, and so GDPR principles apply.
On that basis, we could say “end of story” and “case closed”. However, there are some differences and potential conflicts, making it worthwhile to spend some time on the issue.
It is beyond the scope of this blog post to cover all aspects of the issue at hand, so let’s discuss the fundamentals, with what’s most relevant to Runbox in mind.
At Runbox, we believe that email should be sustainable, secure, and private. In a world where many major email providers are part of sprawling ecosystems that track your every move and monetize your personal data, we’ve taken a different approach. We provide a service that focuses solely on one thing: your email. No distractions, no ads, and absolutely no data mining. Just email.
As an independent email provider based in Norway, we are proud to offer a service that places your privacy and security first. With over two decades of experience, we’ve built Runbox with a simple mission in mind: to provide a reliable, privacy-respecting email service that empowers you to communicate freely and securely. You know where your data is stored (and it’s not floating around in the cloud).
The internet has transformed how we communicate, access information, and connect with each other, but it’s also brought new challenges, particularly when it comes to distinguishing fact from fiction. As misinformation and disinformation spread rapidly across social media and other online outlets, telling truth from fiction is becoming increasingly difficult. And while fact-checking is crucial for ensuring the accuracy of information, some will argue that fact-checking and content moderation is nothing but censorship and a threat to free speech. This raises important questions about the role of online platforms in fact-checking and moderating content, and what responsibility they have to their users. In this article, we’ll explore where fact-checking stands today, how platforms are handling content moderation, and the impact these changes are having.
The influence of big tech companies on our lives is undeniable. With limited oversight and a focus on maximizing profits, these corporations have become increasingly powerful. They rely on unrestricted access to our personal data to maximize profits, which puts them at odds with any form of regulation. They actively seek to shape policies that protect their lucrative revenue streams, and resist regulatory measures that could limit their power.
Without accountability, big tech companies put profits ahead of our privacy. They leave us vulnerable to misinformation and bias, and contribute to the shaping and manipulation of public opinion. As the digital world continues to develop, we’re likely to see more attempts to deregulate to protect their bottom lines.
At Runbox, we pride ourselves on offering personalized support. We are employee owned, which means our team is truly invested in your success. We know how crucial your inbox is, and we believe that fast, effective support can make all the difference in your email experience. When you reach out, you’re communicating with real people, not chatbots or someone with a script. Our support team are co-owners of the company, and know the service inside and out. We genuinely care about helping you. Unlike big companies, where support can feel impersonal, we provide expert assistance tailored to your needs. Whether you’re facing a technical issue or need advice, we’re here to make sure your email works the way you want.
Introduced by the European Union (EU) in May 2018, the General Data Protection Regulation (GDPR) is a landmark piece of legislation that empowers individuals with unprecedented control over their personal information. This law has set a new global standard for data privacy, ensuring that companies are transparent about how they collect, use, and share your data. In this blog post, we’ll explore the key aspects of GDPR and explain why it’s important for Runbox and our customers.
In today’s digital world, protecting our personal data has never been more crucial. With governments, corporations, and hackers all vying for access to our information, it’s important to understand where our data is being stored and who has access to it. Certain countries, such as the United States, have become a concerning destination for data, with its extensive surveillance infrastructure and lack of robust privacy protections.
We’ve said it before, and we’ll say it again. The need for data privacy and the ability to communicate freely has never been more critical. Both individuals and businesses rely on secure online communication to safeguard sensitive information, especially as surveillance technologies continue to monitor and exploit digital interactions. At Runbox, we believe that privacy is more than just a feature; it is the core value that guides our service and our operations. Located in Norway, we are deeply committed to user privacy, which is supported by the country’s strong legal framework. Here, we explore why our location is vital for your privacy protection and how it aligns with the General Data Protection Regulation (GDPR).
January is often a time when we reassess and reorganize. After the holiday rush and the chaos of the previous year, the start of a new year feels like the perfect moment to take a step back and refocus. For many of us, this often means decluttering our physical spaces—cleaning out closets, sorting through old items, and clearing off countertops. But what about our digital lives?
