Good write-up. Incidents like this show how easy it is for data to leak through third-party tools, even with good internal policies. The more dependencies a product has, the harder it is to keep the full chain secure.
That’s why you should only export anonymous information to external parties. There is no valid reason for OpenAI to export my personal information like this.
I will report OpenAI to the data protection agency in my country and I encourage others to do the same. They can not blame Mixpanel when they sprinkle others personal information around like this. NOT OK.
Oh dear. Appears that there is another impending disaster with lots of affected customers about to respond to this incident from Mixpanel. CoinTracker had the same problem. [0]
That's a lot of PII sent to an analytics tool. How is that even possible? That's a gross violation of GDPR and done by an established company not some amateurish startup.
I will report OpenAI to the data protection agency in my country and I encourage others to do the same. They can not blame Mixpanel when they sprinkle others personal information around like this. NOT OK.
[0] https://news.ycombinator.com/item?id=46065208