PrivacyDigest<p><a href="https://mas.to/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> Refuses To Divulge Data Flows To <a href="https://mas.to/tags/Police" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Police</span></a> <a href="https://mas.to/tags/Scotland" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Scotland</span></a> - Slashdot </p><p>Freedom of Information documents reveal that Microsoft cannot guarantee data <a href="https://mas.to/tags/sovereignty" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sovereignty</span></a> , may process data in "hostile" jurisdictions, retains <a href="https://mas.to/tags/encryption" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>encryption</span></a> key control, and blocks vetting of overseas staff -- all leaving the force unable to comply with strict Part 3 data protection rules. <br><a href="https://mas.to/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a> <a href="https://mas.to/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://mas.to/tags/foia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>foia</span></a> <a href="https://mas.to/tags/foi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>foi</span></a></p><p><a href="https://slashdot.org/story/25/08/28/1815208/microsoft-refuses-to-divulge-data-flows-to-police-scotland?utm_source=rss1.0mainlinkanon&utm_medium=feed" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">slashdot.org/story/25/08/28/18</span><span class="invisible">15208/microsoft-refuses-to-divulge-data-flows-to-police-scotland?utm_source=rss1.0mainlinkanon&utm_medium=feed</span></a></p>
#encryption
17 posts15 participants1 post today
Denmark made the controversial CSA Regulation a top priority on day one of its EU Council presidency—but its “new” text mostly recycles already-rejected proposals 
It still enables mass scanning, weakens safeguards, and threatens end-to-end encryption 
Is the EU ready to trade privacy for performative progress? 
https://edri.org/our-work/denmark-council-deadlock-on-the-csa-regulation-are-they-genuinely-trying/
European Digital Rights (EDRi)Denmark wants to break the Council deadlock on the CSA Regulation, but are they genuinely trying? - European Digital Rights (EDRi)Denmark made the widely-criticised CSA Regulation a priority on the very first day of their Council presidency, but show little willingness to actually find a compromise that will break the three-year long deadlock on this law.
Encryption Backdoor in Military/Police Radios
I wrote about this in 2023. Here’s the story:
Thr... https://www.schneier.com/blog/archives/2025/08/encryption-backdoor-in-military-police-radios.html
Schneier on Security · Encryption Backdoor in Military/Police Radios - Schneier on SecurityI wrote about this in 2023. Here’s the story: Three Dutch security analysts discovered the vulnerabilities—five in total—in a European radio standard called TETRA (Terrestrial Trunked Radio), which is used in radios made by Motorola, Damm, Hytera, and others. The standard has been used in radios since the ’90s, but the flaws remained unknown because encryption algorithms used in TETRA were kept secret until now. There’s new news: In 2023, Carlo Meijer, Wouter Bokslag, and Jos Wetzels of security firm Midnight Blue, based in the Netherlands, discovered vulnerabilities in encryption algorithms that are part of a European radio standard created by ETSI called TETRA (Terrestrial Trunked Radio), which has been baked into radio systems made by Motorola, Damm, Sepura, and others since the ’90s. The flaws remained unknown publicly until their disclosure, because ETSI refused for decades to let anyone examine the proprietary algorithms...
#Encryption #Backdoor in Military/Police Radios - https://www.schneier.com/blog/archives/2025/08/encryption-backdoor-in-military-police-radios.html "flaws remained unknown publicly until their disclosure, because ETSI refused for decades to let anyone examine the proprietary algorithms." "seem to be deliberately implemented backdoors."
Schneier on Security · Encryption Backdoor in Military/Police Radios - Schneier on SecurityI wrote about this in 2023. Here’s the story: Three Dutch security analysts discovered the vulnerabilities—five in total—in a European radio standard called TETRA (Terrestrial Trunked Radio), which is used in radios made by Motorola, Damm, Hytera, and others. The standard has been used in radios since the ’90s, but the flaws remained unknown because encryption algorithms used in TETRA were kept secret until now. There’s new news: In 2023, Carlo Meijer, Wouter Bokslag, and Jos Wetzels of security firm Midnight Blue, based in the Netherlands, discovered vulnerabilities in encryption algorithms that are part of a European radio standard created by ETSI called TETRA (Terrestrial Trunked Radio), which has been baked into radio systems made by Motorola, Damm, Sepura, and others since the ’90s. The flaws remained unknown publicly until their disclosure, because ETSI refused for decades to let anyone examine the proprietary algorithms...
#FTC warns tech giants not to bow to foreign pressure on #encryption
#FTC Warns Tech Giants Not To Bow To Foreign Pressure on #Encryption - Slashdot
#privacy
news.slashdot.orgFTC Warns Tech Giants Not To Bow To Foreign Pressure on Encryption - SlashdotThe Federal Trade Commission is warning major U.S. tech companies against yielding to foreign government demands that weaken data security, compromise encryption, or impose censorship on their platforms. From a report: FTC Chairman Andrew N. Ferguson signed the letter sent to large American companie...
Continued thread
In the first class of my European law degree, I must read and understand the EU Charter of Fundamental Rights. Let me know if I got it right.
https://fra.europa.eu/en/eu-charter/title/preamble
Article 1 - Human dignity -
Human dignity is inviolable. It must be respected and protected. [Unless you use e2ee, then really it’s cops that must be respected and protected.]
Article 6 - Right to liberty and security -
Everyone[*] has the right to liberty and security of person. [*Politicians]
Article 7 - Respect for private and family life -
Everyone[*] has the right to respect for his or her private and family life, home and communications. [*Politicians]
Article 8 - Protection of personal data -
1. Everyone has the right to the protection of personal data concerning him or her [unless you use e2ee].
Article 11 - Freedom of expression and information -
1. Everyone has the right to freedom of expression. This right shall include freedom to hold opinions and to receive and impart information and ideas without interference by public authority and regardless of frontiers [unless you use e2ee].
Article 20 - Equality before the law -
Everyone is equal before the law. [Therefore we’re going to treat you like a terrorist and a pedophile at the same time. But politicians are pure and above you.]
Article 25 - The rights of the elderly -
The Union recognises and respects the rights of the elderly to lead a life of dignity and independence and to participate in social and cultural life [unless you use e2ee].
Article 48 - Presumption of innocence and right of defence -
1. Everyone who has been charged shall be presumed innocent until proved guilty according to law. [That’s why we’re going to surveil everything you say just to make sure you stay innocent ;).]
Article 54 - Abuse of rights -
Nothing in this Charter shall be interpreted as implying any right to engage in any activity or to perform any act aimed at the destruction of any of the rights and freedoms recognised in this Charter or at their limitation to a greater extent than is provided for herein. [Unless it’s encrypted. You see, the theoretical protection of children and theoretical spotting of terrorism does in fact nullify this.]
European Union Agency for Fundamental RightsPreamble
What can we do to protect ourselves against #chatcontrol? Politicians and governments will not solve this.They are all about #control and power. Begging them is a waste of time and dignity.
Must it be a technological change? A social one? What do we do?
More #foss? More #encryption? A new #internet? #decentralization? How can we help?
Boost for reach, please. I am from a small #fedi instance ;)
US-Regulierer erinnert Tech-Konzerne an #Datenschutz im Ausland | heise online https://www.heise.de/news/US-Regulierer-erinnert-Tech-Konzerne-an-Datenschutz-im-Ausland-10574114.html #privacy #DigitalServicesAct #DSA #OnlineSafetyAct #DSGVO #GDPR #Verschlüsselung #encryption #Zensur #censorship #E2EE #EndToEndEncryption #End2EndEncryption #FTC #FederalTradeCommission
heise online · US-Regulierer erinnert Tech-Konzerne an Datenschutz im Ausland
More from 
Daniel AJ Sokolov
"The centerpiece of the Thunderbird Pro offering is Thundermail, Thunderbird’s first official email hosting service. Built to support IMAP, SMTP, and JMAP protocols from day one, Thundermail will work seamlessly with the Thunderbird client and other standards-based email apps. Notably, the initial infrastructure will be based in Germany, a jurisdiction known for its robust data protection laws under the GDPR framework and a long-standing culture of digital privacy.
Locating Thundermail’s infrastructure in Germany positions the service as a privacy-focused alternative to US-based providers, many of which are subject to surveillance regimes like the CLOUD Act. Users will be able to bring their own custom domain or choose a Thunderbird-provided address with @thundermail.com or @tb.pro suffixes.
Thunderbird describes this move as part of its broader mission to reinforce support for open standards and provide users with a cohesive, privacy-conscious email experience, entirely within its own ecosystem."
https://cyberinsider.com/thunderbird-to-launch-encrypted-email-service-hosted-in-germany/
CyberInsider · Thunderbird to Launch Encrypted Email Service Hosted in GermanyThunderbird released a progress update on its Pro service, introduced earlier this year as a private alternative to mainstream platforms.
Interesting blog about creating a fully encrypted cloud storage on nextcloud.
https://community.hetzner.com/tutorials/encrypted-private-nextcloud-VPS-and-storagebox
#cybersecurity #nextcloud #encryption #cloud
community.hetzner.comNextcloud with fully encrypted storageThis tutorial shows how to setup your own Nextcloud following the recommended AIO approach, storing data encrypted on disk and using Hetzner's Storage Box.
This week's net.wars, "Email to Ofgem", finds the US declaring victory over the UK Home Office's demand that Apple weaken its encryption, and emails OfGem to oppose Tesla's application to enter the UK energy market: https://netwars.pelicancrossing.net/2025/08/22/email-to-ofgem/ #Apple #encryption #ukpol #energy
net.wars · Email to OfgemSo, the US has claimed victory against the UK.
Regular readers may recall that in February the UK's Home Office secretly asked Apple to put a backdoor in the A
StartMail promotes making PGP encryption easy with just one click to encrypt email.
CLARIFICATION
Webmail client supports PGP.
PGP is implemented server-side.
Server-side does not support end-to-end encryption.
SUMMARY
Server-side PGP is more secure than plaintext email.
Client-side PGP is more secure than server-side.
ALTERNATIVE
Thunderbird desktop client: https://mastodon.online/@blueghost/111891560151967986
Website: https://www.startmail.com