pochisoldi wrote:AF62 wrote:The doorbell resolution is good enough to capture people and vehicles passing by on the road some distance away at the end of the drive so, according to the ICO it does fall within GDPR which is probably the same for most people who own them.
However the ICO is deluded if it thinks that anybody is going to do any of that nonsense they say is required
Many people automatically do many of the things mandated by GDPR, without even realising they have a duty to do so, and for the majority of those who don't there's no victim to register a complaint anyway.
Not with the type of consumer CCTV such as Ring doorbells they don't!
To comment on the points you made before -
pochisoldi wrote:Compliance with the spirit of the law is a doddle.
The basics: Turn off any audio monitoring, Pull the memory card for review on a regular basis, delete anything you don't need, and if the flytipping stops, remove the camera (or its ability to record).
Write down:
Why you have decided to deploy the camera(s).
When you will review your decision to deploy.
How long you will routinely keep the images for. (If you pull the card from the camera every Sunday, and delete all unwanted images, the answer is "one week").
What criteria will you use for retaining images? (this should be consistent with the decision to deploy)
How long will you keep retained images for, and where will you keep them ("six months" and/or "until handed over to the police/council" are good start points)
Nobody with a Ring doorbell turns off audio (or video) monitoring - that is the whole point of them. They will record audio and video automatically when anyone strays into view - does that meet GDPR? But you can also trigger 'live view' if you just fancy a look at what is going on - and that still records.
"Pull out the memory card" - they don't have one as everything is stored in Amazon's cloud - and I don't know (and don't care) where in the world that is - does that meet GDPR?
"Write down" - umm, no, really, no - does that meet GDPR?
Why you have decided to deploy the camera(s) - It is a door bell that watches my drive and spies on the neighbours movements - does that meet GDPR?
When you will review your decision to deploy - never - does that meet GDPR?
How long you will routinely keep the images for - for as long as Amazon want to keep them. By default it is 30 days but you can mark interesting clips to be kept forever and also I can download anything funny to be uploaded to YouTube, Reddit, Facebook, Twitter, etc. - does that meet GDPR?