Euro-folks: Data Protection Laws and Lulz Hey, so something just occurred to me. I know this is long, but there is the potential for EPIC levels of win (and the complete destruction of CoS plans, to boot.) In Europe, there is a thing called the Data Protection Registrar. Every EU country has an implementation of this- in Britain, for example, it's called the Data Protection Act (1984, 1998 ). Basically the way this works is that any organization that stores or collects personally identifying data must register with the Data Protection Registrar. At that point, any person who believes an organization is storing data about them is entitled to a full and unabridged copy of that information, or proof that no data is being stored. The organization is allowed to charge a reasonable fee for extracting this data, but the DPR sets the fee- in Britain, it's about ten quid and the fee is similar in other European countries. You give them some means of identifying you in their databank, and they have to then search for it. They don't have a choice, and they have a limited time in which to give you your copy. This, of course, costs them a lot of money. If they decline to comply, the Data Protection Registrar then totally owns them in court, since you have a statutory right to that data. All forms of data are now included since the 1998 and 2000 amendments (it used to just be computer-based info, but now photographs, paper files and video tapes are included, as well as any other form of information that is personally identifying.) Mark Thomas, excellent satirist and general thorn in the side of authority, used this to great effect when he encouraged people to send photos of themselves to anyone who had a CCTV system. These organizations then had thirty days or so to search through all their tapes and find any footage of those people who had submitted a request. Even the police and city governments were forced to comply, so I doubt the CoS can escape. Obviously this doesn't work too well for people who are still anonymous, but lots of people have been named, and we have lots of ex-scns; have any of you tried submitting a Data Protection Act request? If you live in Europe and the data is used there- regardless of where it may be nominally stored- you are protected by the various Acts. I'd love to see them try to get out of this one. Fair Game loses bigstyle to the European Court. We could massively own them, since if they refuse to comply with a properly formatted request, they lose their right to hold data of any form on anyone at all, not just the person whose request was refused. Given that they also have a limited timespan to respond, I can easily see them losing out of sheer ineptitude. Better still, you CANNOT sign away your Data Protection Act rights in any form of contract. There is the potential for massive win and hilarious lulz, as well as a large measure of insider info to come out here. Who's up for it? You know you want to.