Comment on Meta's new ‘AI Mode’ on Facebook pulls from public info across its platforms
cattywampus@lemmy.world 19 hours agoVery fair point. I still have personal doubts about data on foreign servers. Is there a third party actually verifying they are obeying the law?
remotelove@lemmy.ca 19 hours ago
Compliance audits are usually handled by a third party and I am only familiar with SOC2, SOX, PCI and ISO270001. GDPR is a beast, from what understand. I do suspect it’s also ran by a third party during an audit period.
Most of the above compliance programs require network architecture reviews and checks to ensure that their policies actually match how their internal processes and software actually works. This typically includes compliance enforcement mechanisms, such as what we were discussing.