Dude. He did quote it (using " ") Not providing the source (wikipedia) is different from trying to get the credit for it.
This is NOT plagiarism.
He indicated by the use of " " that the italicized text was a (n unattributed) quote, but he claims as his own personal reasoning the larger part that I have bolded by prefixing it with "So, in accordance with GDPR" and then adding further comments of his own, with no reference to distinguish the bulk of the post as non original, thus it is plagiarism.
DISCLAIMER: The fact that it's a sock puppet account calling me names has nothing to do with my posting this, nor am I particularly in favor of weaponizing plagiarism reporting (not to suggest that this is the case regarding this report).
KYC process handled by ICOs very strange for me. I think that in most cases KYC handled by ICOs don't comply with General Data Protection Regulation.
"The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA). It also addresses the export of personal data outside the EU and EEA areas. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU"
So in accordance with GDPR a processor of personal data must clearly disclose any data collection, declare the lawful basis and purpose for data processing, how long data is being retained, and if it is being shared with any third-parties or outside of the EU. Data subjects have the right to request a portable copy of the data collected by a processor in a common format, and the right to have their data erased under certain circumstances. Public authorities, and businesses whose core activities centre around regular or systematic processing of personal data, are required to employ a data protection officer, who is responsible for managing compliance with the GDPR. Businesses must report any data breaches within 72 hours if they have an adverse effect on user privacy, etc.
I think that logically ICOs must to avoid to collect personal data taking into account that GDPR requirements it is addition requirements for data processor. And additional compliance risks.
I don't know any direct regulatory requirements for KYC process, but I know requirement for Personal data protection. It looks that KYC process not legit in the most cases.
Original post :
https://en.wikipedia.org/wiki/General_Data_Protection_RegulationThe General Data Protection Regulation (EU) 2016/679 ("GDPR") is a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA). It also addresses the export of personal data outside the EU and EEA areas. The GDPR aims primarily to give control to individuals over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.[1] Superseding the Data Protection Directive 95/46/EC, the regulation contains provisions and requirements pertaining to the processing of personal data of individuals (formally called data subjects in the GDPR) inside the EEA, and applies to an enterprise established in the EEA orregardless of its location and the data subjects' citizenshipthat is processing the personal information of data subjects inside the EEA.
A processor of personal data must clearly disclose any data collection, declare the lawful basis and purpose for data processing, and state how long data is being retained and if it is being shared with any third parties or outside of the EEA. Data subjects have the right to request a portable copy of the data collected by a processor in a common format, and the right to have their data erased under certain circumstances. Public authorities, and businesses whose core activities centre around regular or systematic processing of personal data, are required to employ a data protection officer (DPO), who is responsible for managing compliance with the GDPR. Businesses must report any data breaches within 72 hours if they have an adverse effect on user privacy. In some cases, violators of the GDPR may be fined up to 20 million or up to 4% of the annual worldwide turnover of the preceding financial year in case of an enterprise, whichever is greater.