robbie_1969 wrote:
If anyone knows can they please let me know - regards Robbie
What kind of data?
Your games? Your IP address?
I don't think you can.
How can I opt out of chess dot come gathering and using data they have collected?
Sort:
well that's just the thing, what kind of data do they gather and what do they use it for and where is the opt out button.
Jun 30, 2018
0
#4
Chess.com doesn't collect the kind of data Facebook and Google do. I don't know everything they collect, but I know there will be some basics like your IP address that are vital for running the site and keeping troublemakers away. Facebook has trackers and "like" buttons all over the internet, and all of those can track you; chess.com doesn't. Chess.com also doesn't get into the same kind of detailed targeted advertising; they simply don't have access to the kind of data that would be needed.
In general, I would assume that they have anything you give them, and not a lot more.
If you're concerned about privacy, the Ghostery browser plugin is a good one for blocking trackers from facebook, Google, and others. It can, by default, also block the UserSnap plugin, which is used (legitimately) by chess.com's bug report tool, so if you want to use that to report bugs you'd need to unblock UserSnap.
When you load a page in the browser what do you think the social icon Facebook button is doing? the twitter icon? You are aware Facebook and Twitter load scripts, right here on chess dot com? Let me show you what chess dot com actually loads in your browser.
(First party, that is necessary for the running of the site)
[chess.com]
(adds and trackers)
amazon-adsystem.com
amplitude.com
(necessary for adding functionality to the site)
chesscomfiles.com
(adds trackers and more adds)
doubleclick.net
securepubads.g.doubleclick.net
facebook.com
facebook.net
google.com
googletagservices.com
themediashop.co
Thank you for your recommendation but I thought my original question was quite clear, where is the option to opt out of having data processed or restricted? or the right to access what data is being gathered? and FYI IP address is considered personal data, (https://www.eugdpr.org/gdpr-faqs.html)
Under the GDPR, we in Europe have the falling 'rights':
The right to access –this means that individuals have the right to request access to their personal data and to ask how their data is used by the company after it has been gathered. The company must provide a copy of the personal data, free of charge and in electronic format if requested.
The right to be forgotten – if consumers are no longer customers, or if they withdraw their consent from a company to use their personal data, then they have the right to have their data deleted.
The right to data portability – Individuals have a right to transfer their data from one service provider to another. And it must happen in a commonly used and machine readable format.
The right to be informed – this covers any gathering of data by companies, and individuals must be informed before data is gathered. Consumers have to opt in for their data to be gathered, and consent must be freely given rather than implied.
The right to have information corrected – this ensures that individuals can have their data updated if it is out of date or incomplete or incorrect.
The right to restrict processing – Individuals can request that their data is not used for processing. Their record can remain in place, but not be used.
The right to object – this includes the right of individuals to stop the processing of their data for direct marketing. There are no exemptions to this rule, and any processing must stop as soon as the request is received. In addition, this right must be made clear to individuals at the very start of any communication.
The right to be notified – If there has been a data breach which compromises an individual’s personal data, the individual has a right to be informed within 72 hours of first having become aware of the breach.
Where can we access these 'rights', MGleason if you please?
BobbyTalparov wrote:
The "opt out" button is labeled "Close Account"
Perhaps in America, but in Europe we now have certain, 'rights'. 
superchessmachine wrote:
interesting....
Yes I think so too
What is even more interesting is that it appears that companies are not allowed to deny you a service if you don't want to opt in because its not really providing a choice, its more of a kind of ultimatum.
Jun 30, 2018
0
#10
Virtually all of those are trackers from other sites, such as Twitter, Facebook, Google, etc. The Ghostery browser plugin would block them. Alternatively, you could take it up with Google, Facebook, Twitter, etc.
If you want to make a GDPR data request to chess.com, the best option would be to contact support: https://support.chess.com/customer/portal/emails/new
robbie_1969 wrote:
When you load a page in the browser what do you think the social icon Facebook button is doing? the twitter icon? You are aware Facebook and Twitter load scripts, right here on chess dot com? Let me show you what chess dot com actually loads in your browser.
(First party, that is necessary for the running of the site)
[chess.com]
yada yada yada
Thank you for your recommendation but I thought my original question was quite clear, where is the option to opt out of having data processed or restricted? or the right to access what data is being gathered? and FYI IP address is considered personal data, (https://www.eugdpr.org/gdpr-faqs.html)
Under the GDPR, we in Europe have the falling 'rights':
The right to access –this means that individuals have the right to request access to their personal data and to ask how their data is used by the company after it has been gathered. The company must provide a copy of the personal data, free of charge and in electronic format if requested.
The right to be forgotten – if consumers are no longer customers, or if they withdraw their consent from a company to use their personal data, then they have the right to have their data deleted.
The right to data portability – Individuals have a right to transfer their data from one service provider to another. And it must happen in a commonly used and machine readable format.
The right to be informed – this covers any gathering of data by companies, and individuals must be informed before data is gathered. Consumers have to opt in for their data to be gathered, and consent must be freely given rather than implied.
The right to have information corrected – this ensures that individuals can have their data updated if it is out of date or incomplete or incorrect.
The right to restrict processing – Individuals can request that their data is not used for processing. Their record can remain in place, but not be used.
The right to object – this includes the right of individuals to stop the processing of their data for direct marketing. There are no exemptions to this rule, and any processing must stop as soon as the request is received. In addition, this right must be made clear to individuals at the very start of any communication.
The right to be notified – If there has been a data breach which compromises an individual’s personal data, the individual has a right to be informed within 72 hours of first having become aware of the breach.
Where can we access these 'rights', MGleason if you please?
I guess my question is did you write that list yourself? Or did it come from somewhere else?
MGleason wrote:
Virtually all of those are trackers from other sites, such as Twitter, Facebook, Google, etc. The Ghostery browser plugin would block them. Alternatively, you could take it up with Google, Facebook, Twitter, etc.
If you want to make a GDPR data request to chess.com, the best option would be to contact support: https://support.chess.com/customer/portal/emails/new
Thank you again for the advice but I have umatrix which allows me to allow/block all elements in the browser including, scripts, cookies, css, media, XHR, frames and other elements. I am not concerned about privacy nor of taking anything up with facebook, google or any of the other third party add systems or trackers that send data when I log in to chess dot com. What I am concerned about is where is the opt in or opt out requests to have my data used or restricted by chess dot com in compliance with GDPR for as far as I can discern no options have been given. If you know of any please let me know.
notmtwain wrote:
I guess my question is did you write that list yourself? Or did it come from somewhere else?
I am not the subject of this thread, however for your information i did not author the list. It and many others like it can readily be found in the public domain.
robbie_1969 wrote:
notmtwain wrote:
I guess my question is did you write that list yourself? Or did it come from somewhere else?
I am not the subject of this thread, however for your information i did not author the list. It and many others like it can readily be found in the public domain.
I asked because I Googled some of your language and came up with nothing, so I am assuming that it was just a list put together by you and not some official statement of rights that you were quoting.
notmtwain wrote:
robbie_1969 wrote:
notmtwain wrote:
I guess my question is did you write that list yourself? Or did it come from somewhere else?
I am not the subject of this thread, however for your information i did not author the list. It and many others like it can readily be found in the public domain.
I asked because I Googled some of your language and came up with nothing, so I am assuming that it was just a list put together by you and not some official statement of rights that you were quoting.
I cannot remember where I lifted it from, simply search for GDPR rights and you will get many similar lists. If i can find the site I will cite it.
its annoying me now that I cannot locate the site.
I may ask chess dot com to remove me from profiling under Art. 21 of GDPR
https://gdpr-info.eu/art-21-gdpr/
ilovesmetuna wrote:
hi robbie, i think chesscom is a sort of bandit site, and i totally didn't expect to get that email from them about protecting our data. i will never forget the time i first bought a membership here. that night someone in new york tried to pay their taxi fare with my credit card number, causing my card to be locked by my bank. still though, it was kinda fun, felt like i was in an Al Pacino film.
wow thats just crazee, did they catch the fiend?
BobbyTalparov wrote:
robbie_1969 wrote:
BobbyTalparov wrote:
The "opt out" button is labeled "Close Account"
Perhaps in America, but in Europe we now have certain, 'rights'.
If you noticed, when those rules changed in Europe, Chess.com updated their privacy policy. The "rights" only apply to companies that actually collect data on you. The scripts you are referring to are the ads by other companies.
ches dot com facilitates the collection of data by third party companies, and yes they did update their privacy policy but they (chess dot com) also need to clearly get consent from users to collect any kind of personal data from Europeans.
here is chess dot coms updated privavcy policy.
Legal Basis for Processing Personal Data Under General Data Protection Regulation (GDPR)
If you are from the European Economic Area (EEA), Chess.com, LLC legal basis for collecting and using the personal information described in this Privacy Policy depends on the Personal Data we collect and the specific context in which we collect it.
Chess.com, LLC may process your Personal Data because:
- We need to perform a contract with you
- You have given us permission to do so
- For payment processing purposes
- To comply with the law
I cannot recall having given chess dot com any permission to collect or use personal data nor was permission sought.
If anyone knows can they please let me know - regards Robbie