|
|
|
|
|
|
by ender341341
1306 days ago
|
|
|
Is it actually prescriptive, or does it say (in more legalese form) "use industry best practices to protect user data". Six characters is laughably bad and would fail pretty much any password requirements I've seen in the last decade (except for my credit union who only updated like 5 years ago after finally migrating to a better back end). |
|
|
Key section is probably this one: https://gdpr-info.eu/art-32-gdpr/