Good that there is a new feature added, I believe that there are other aspects for GDPR to be addressed - at least should be published in the Glide privacy policy:
What happens to that personal data in the app specifically is it only processed by Glide in respect of the app’s purpose and does it get shared by Glide to any other party, if so what is the legal basis for that, who is the controller of that data and how does the data subject invoke their rights
Does Glide scan any other files on our google drives or only the sheets that are linked to the apps.
Can the data be hosted in the EU by an EU legal entity rather than USA - this would be a mitigation to CJEU Schrems 2 ruling (I have seen debate online about whether SCCs still hold and individual country regulators have differing or unpublished views on this).
Given the huge market within EU for such services or even if another country has data on EU citizens then GDPR compliance is a must - I hope Glide can provide this soon.
@mark It will be a game changer for us in Europe.
Pls also consider the ePrivacy directive as this is governing the use use of cookies along with GDPR. I haven’t really understood how glide can put cookies on the device without getting acceptance from the user.
Any update on this? Is glide still collecting cookies without the users consent? If use the inspect function it seems it doesn’t but if I use GDPR, ePrivacy and CCPA compliant cookies | Cookiebot CMP, there are four uncategorised cookies that are collected @david ??
I will have an app going to hundreds of thousands in Germany soon. If what @PabloMFalero says is right, then this is a major problem (and breach of trust)… so I hope this can be clarified ASAP @Mark@david@Ian - thanks!
Hi @Ian , thank you so much for your response. This is the idea I had, and as I said, when I right click and go to inspect, I can see that glide doesn’t collect cookies, but then the customer sent me a report from cookiebot that shows this…any clue. And is there a document where it specifically says what you mentioned above so I can show it to future customers if asked?
The tool that this screenshot is from is mistaken—these are not cookies, they are local-only cache values that are essential to Glide’s service and are never sent to a server.
It looks like they were ‘unclassified’ - and now you have got the info that can be provided them to classify them, as not being cookies, and what they do
Hi all, there are several GDPR threads so I decided to post in this one as it was the most recent.
Can anybody confirm that one needs to use Google sheets in order to be GDPR compliant? Based on research and user feedback, I was going to go full steam ahead with Glide tables but if this causes an issue with GDPR, then I need to reconsider my whole workflow.
Additionally, it would help us users if there was a Glide GDPR for dummies set up page somewhere? I know there’s a ton of info in the T & C but reading legalese is like reading ancient hieroglyphics. I understand that if Glide were to make a dummies version, they would be leaving themselves open to liability but right now, it’s pretty confusing. Is there a button with a link in Glide editor that we can push for GDPR? And is there a way we can set up GPS location detect to determine whether the user is from the EU or not to either present them with the screen or not? Similarly if the user is in California or not and whether to present the California privacy policy or not?
Or I guess the easy answer is just have a massive T&C/privacy policy that has it all so it doesn’t matter where the user is.
@Zonez_SF a GDPR template where all the glide related gdpr stuff were put in as a starting point would help people do the right thing.
You will of course need to specify how you will use the personal data.
And I agree - going through the privacy document from glide is really tough reading - and not for the billion software developers that is the goal of glide
@Zonez_SF i cannot see how you should be more gdpr compliant using google sheets compared to glide tables. You will still more data to glide servers in the us - but I might be missing some parts the the Glide team can fill in
The way I understand it (and I may be wrong) is that GDPR applies to EU citizens wherever they are located. So just because a user is in California, or China, or Colombia, or on the moon, it doesn’t mean that GDPR doesn’t apply. If your user is an EU citizen, then GDPR applies.
So… yes, Glide has a location feature that can help you determine a users current location, but I don’t believe that’s going to be of any use when it comes to GDPR compliance. And it comes with its own privacy-related issues.
As far as I understand GDPR, when we develop applications with Glide, we aren’t really GDPR-compliant. My view is, however, that there is no such thing as being 100% GDPR-compliant. No company is. The spirit of GDPR is to try to comply as much as possible and to not cross the line on some non-negotiables.
If being strictly GDPR-compliant were a thing, we’d have to use solutions from leading US tech companies only that have servers in the EU (ironically that would be Google, Microsoft, Amazon, Salesforce and a limited number of others) or solutions from EU-based tech companies that usually lag behind their US counterparts. If neither of these is a suitable option, then what’s left if accepting to use smaller solutions such as Glide that are doing their best to offer a GDPR-compliant-enough tool.
