Skip Navigation

General Data Protection Regulation (“GDPR”) @sopuli.xyz

debanqued @beehaw.org

2mo ago

Microsoft: solve our visual CAPTCHA if you want to submit a GDPR request

www.microsoft.com

Microsoft-Privacy Request Other

Indeed, MS only makes GDPR rights available to people who are willing and able to solve their graphical CAPTCHA. You must execute their JavaScript and have image rendering enabled in your browser.

For sighted people it’s not the more shitty varieties of CAPTCHA. Looks easy. But still fucked up that there is a barrier to exercising GDPR rights.

2 comments

I think you are allowed to send an email (or even real mail!) to any address publicly associated with the company and they are required to handle it appropriately. Means, you can get the address from the impressum/about page (which they are also legally required to have) and send it there.
- Every method has a barrier:
  snail mail: requires postage, which is particularly costly if you need proof of delivery. Also generally entails revealing your physical address to the controller.
  email: requires revealing your email address to them. And if the recipient is MS or Google, or a user on those platforms, their mail server is fussy. I cannot email any MS or Google users because their server blocks my mail server.
  A webform could potentially have the fewest barriers, but they blew it.