DropBox, WhatsApp & Co.

VON Dr. Wolf SiegertZUM Mittwoch Letzte Bearbeitung: 28. Juni 2016 um 22 Uhr 09 Minutenzum Post-Scriptum


Am 2. Juni 2016, 04:41 traf diese e-Mail ein:

We noticed you haven’t used your Dropbox account in over 1 year.
Your Dropbox account under contact@iris-media.com will be closed automatically unless you log in within the next 7 days.
Please let us know you want to keep your account by signing into Dropbox with contact@iris-media.com before June 8, 2016.
Sign in to keep your account

Click the button or go directly to https://www.dropbox.com/login
Recently used Dropbox but still received this email?
If you recently used Dropbox, we’re emailing you about a separate, unused account. Compare the email address on the account you’re actively using to the one included in this email. Even the addition or removal of a period (’.’) from the address indicates a separate account.
No longer want your account or your data?
We’ll automatically close your account on June 8, 2016. For help with saving your files before your account closes, visit our help center article.
What’s going to happen to your account?
Once your account is closed, you won’t be able to sign in anymore or link any new devices. Your data will also be subject to deletion from the service.
If you have questions or need help with your account, please visit our help center or contact inactives-help@dropbox.com.
The Dropbox Team

Protect yourself from phishing emails.
We will never ask you for your password in an email. If you don’t trust a link in an email, go directly to the normal login page. Learn more about phishing and malware

Wir haben daraufhin das Konto aufgerufen - wenn auch nicht über die in der Mail angebotenen Klick-Links sondern über einen Firefox.Browser. Und dabei sogleich einen zweistufigen Sicherheitstest aktiviert.

Und wir haben uns die AGB’s vom Stand 12. Februar 2016 angeschaut, Und sind dabei auch nach der Lektüre der deutschsprachigen Version auf die englischsprachige umgestiegen, da nur diese als Rechtsgrundlage herangezogen werden kann. Und die lautet so:

Dropbox Privacy Policy

Posted: February 12, 2016

Thanks for using Dropbox! Here we describe how we collect, use and handle your information when you use our websites, software and services ("Services").

What & Why

We collect and use the following information to provide, improve and protect our Services:

Account. We collect, and associate with your account, information like your name, email address, phone number, payment info, and physical address. Some of our services let you access your accounts and your information with other service providers.

Services. When you use our Services, we store, process and transmit your files (including stuff like your photos, structured data and emails) and information related to them (for example, location tags in photos). If you give us access to your contacts, we’ll store those contacts on our servers for you to use. This will make it easy for you to do things like share your stuff, send emails, and invite others to use the Services.

Usage. We collect information from and about the devices you use to access the Services. This includes things like IP addresses, the type of browser and device you use, the web page you visited before coming to our sites, and identifiers associated with your devices. Your devices (depending on their settings) may also transmit location information to the Services.

Cookies and other technologies. We use technologies likecookies and pixel tags to provide, improve, protect and promote our Services. For example, cookies help us with things like remembering your username for your next visit, understanding how you are interacting with our Services, and improving them based on that information. You can set your browser to not accept cookies, but this may limit your ability to use the Services. If our systems receive a DNT:1 signal from your browser, we’ll respond to that signal as outlined here

With whom

We may share information as discussed below, but we won’t sell it to advertisers or other third-parties.

Others working for Dropbox. Dropbox uses certain trusted third parties to help us provide, improve, protect, and promote our Services. These third parties will access your information only to perform tasks on our behalf and in compliance with this Privacy Policy.

Other users. Our Services display information like your name and email address to other users in places like your user profile and sharing notifications. Certain features let you make additional information available to other users.

Other applications. You can also give third parties access to your information and account - for example, via Dropbox APIs. Just remember that their use of your information will be governed by their privacy policies and terms.

Dropbox Business and Dropbox Enterprise Admins. If you are a Dropbox Business or Dropbox Enterprise user, your administrator may have the ability to access and control your Dropbox Business or Dropbox Enterprise account. Please refer to your employer’s internal policies if you have questions about this. If you are not a Dropbox Business user but interact with a Dropbox Business or Dropbox Enterprise user (by, for example, joining a shared folder or accessing stuff shared by that user), members of that organization may be able to view the name, email address and IP address that were associated with your account at the time of that interaction.

Law & Order. We may disclose your information to third parties if we determine that such disclosure is reasonably necessary to (a) comply with the law; (b) protect any person from death or serious bodily injury; (c) prevent fraud or abuse of Dropbox or our users; or (d) protect Dropbox’s property rights.

Stewardship of your data is critical to us and a responsibility that we embrace. We believe that our users’ data should receive the same legal protections regardless of whether it’s stored on our services or on their home computer’s hard drive. We’ll abide by the following Government Request Principles when receiving, scrutinizing and responding to government requests for our users’ data:

Be transparent,
Fight blanket requests,
Protect all users, and
Provide trusted services.

Please visit our Government Request Principles and Transparency Report for more detailed information.


Security. We have a team dedicated to keeping your information secure and testing for vulnerabilities. We also continue to work on features to keep your information safe in addition to things like two-factor authentication, encryption of files at rest, and alerts when new devices and apps are linked to your account.

Retention. We’ll retain information you store on our Services for as long as we need it to provide you the Services. If you delete your account, we’ll also delete this information. But please note: (1) there might be some latency in deleting this information from our servers and back-up storage; and (2) we may retain this information if necessary to comply with our legal obligations, resolve disputes, or enforce our agreements.


Around the world. To provide you with the Services, we may store, process and transmit information in the United States and locations around the world - including those outside your country. Information may also be stored locally on the devices you use to access the Services.

Safe Harbor. Dropbox complies with the EU-U.S. and Swiss-U.S. Safe Harbor ("Safe Harbor") frameworks and principles. We have certified our compliance, and you can view our certifications here. You can learn more about Safe Harbor by visiting http://export.gov/safeharbor. JAMS is the independent organization responsible for reviewing and resolving complaints about our Safe Harbor compliance. We ask that you first submit any such complaints directly to us via privacy@dropbox.com. If you aren’t satisfied with our response, please contact JAMS at http://www.jamsinternational.com/rules-procedures/safeharbor/file-safe-harbor-claim.

NOTE: When transferring data from the European Union, the European Economic Area, and Switzerland, Dropbox relies upon a variety of legal mechanisms, including contracts with our users. Dropbox doesn’t rely upon Safe Harbor as a legal basis for data transfer but does adhere to the Safe Harbor Privacy Principles while specific guidance for the forthcoming EU-US Privacy Shield program is developed. For information about data transfers from Europe to the United States, please visit this page.


If we are involved in a reorganization, merger, acquisition or sale of our assets, your information may be transferred as part of that deal. We will notify you (for example, via a message to the email address associated with your account) of any such deal and outline your choices in that event.

We may revise this Privacy Policy from time to time, and will post the most current version on our website. If a revision meaningfully reduces your rights, we will notify you.


Have questions or concerns about Dropbox, our Services and privacy? Contact us at privacy@dropbox.com.

Im Nachgang wurde dann auch die erste Pressemeldung, die für uns in der Dropbox hinterlegt war, abgerufen - unter Nutzung des nunmehr eingerichteten und aktivierten zweistufigen Sicherheitsverfahrens.


Aber all das schützt nicht vor Dummheit. Es wäre zum Beispiel eine Dummheit, eine inzwischen auf eingegangene Nachricht von "Robin Robins" aufzumachen, der behauptet, dass es an uns wäre ein "Scanned Dokument.zip" herunterzuladen und zu öffnen, bei dem es um ein "updated agreement with GOOSSENS - REDLEY" ginge.

Dennoch werden wir das Thema mit einem "PS"-Vermerk weiter im Blick haben, da es viele von uns in gleicher Weise betrifft. Dabei wird es um die Fragen gehen, ob das DOCULIFE-Angebot der T-Systems dazu eine Alternative sein kann... , wie es um die Verschlüsselung der WhatsApp-Dienste bestellt ist und was heute schon an Paket-Lösungen für VSME’s möglich ist [1]


Auf den Punkt gebracht wird das ganze Thema dann von dem Gespann Kloiber - Welchering und ihrer Deutschlandfunk-Sendung "Computer und Kommunikation" vom 18. Juni 2016 "Verdatet und bewacht" von der "No-Spy"-Konferenz in Stuttgart. Und mit einer ziemlich radikalen These, die da im Interview vertreten wird: der einzig wirklich wirksame Schutz der Privatsphäre ist die Bereitschaft, auf die Nutzung von Diensten wie facebook und WhatsApp zu verzichten oder am besten damit gar nicht erst anzufangen... hören Sie selber:


[1In der c’t Ausgabe 12 vom 28. Mai 2016 wirbt die Firma "QualityHosting" mit einem Online- Office-Paket für 5 fixe Endgeräte mit absolut wettbewerbsfähigen Preisen: https://office.qualityhosting.de/quality-office.html.

10319 Zeichen