As well as the hurdles pointed out in the article, their Article 15 process (starting here: https://digitalerantrag.ksv.at/Dip/?request=auskunft-nach-ar... ) requires an Austrian mobile phone number. Personally I'd like to exercise my rights under Article 15 (since I am an EU citizen) but I don't have an Austrian phone number.
Subject: Request for Personal Data Access Under GDPR Article 15
Dear KSV1870 Data Protection Officer,
I hope this message finds you well. I am writing to formally request access to all personal data that KSV1870 holds about me, in accordance with my rights under Article 15 of the General Data Protection Regulation (GDPR).
Please note that I am an EU citizen residing in Ireland and have recently encountered difficulties in accessing your web services due to the requirement of an Austrian mobile phone number, which I do not possess. This limitation has prompted me to directly reach out via email to exercise my rights under the GDPR.
To assist you in locating my data, I am providing the following personal details:
Full Name: [Your Full Name]
Date of Birth: [Your Date of Birth]
Address: [Your Address in Ireland]
Email Address: [Your Email Address]
Any other relevant identifying information: [Any Other Relevant Information]
Under GDPR Article 15, I am entitled to receive a copy of all personal data that you hold about me, as well as additional information about how my data is processed. My request includes any data collected, stored, or processed by KSV1870, in both electronic and physical formats.
I would appreciate if you could acknowledge the receipt of this request and provide an estimated timeline for a response. According to GDPR guidelines, you are required to respond within one month of receiving this request.
If you require any further information from my end to facilitate this request, please do not hesitate to contact me at [Your Contact Information].
Thank you for your attention to this matter. I look forward to your prompt response.
Tangentially: Purchasing on-demand PII from non-EU companies to produce some individuals score and deleting the sensitive records right after, appears to be a valid/emerging loophole to circumvent GDPR.
In my effort to find a new flat, I encoutered an unknown bavarian (germany) based rating company that boasted with a partnership in switzerland, which is a non-EU country. I cant remember the companies name.
Credit scores are somewhat different than trust scores because you usally agree to your data being given away to rating companies when you sign eg. a contract for a bank accout. Trust worthines additionally encapsulates stuff like criminal recods, complaints and maybe even mental health.
I never got the point of credit scores and outsourcing that math to a private third party.
How things work in France is much better, simpler and easier process for everyone involved. You ask a bank for a loan, and submit information about your current revenues and situation (in a couple or not, renting or not, children or not). The bank checks with Banque de France if you have outstanding loan obligations to other banks, and if they have you in their register of people that have failed to pay loans.
No third party private company has a ton of information about your life, which they make money of selling. Not everyone can just ask said third party about your personal life (e.g. landlords or employers) because it doesn't concern them.
most countries have elites who do not want their financial information on their central bank, so everyone else have to accept the infective system because of them. us and uk and ru are the last holdouts, with most other places moving to instant payments owned by central banks as a backdoor into society to close this option.
