My employer in Germany (U.S. company with an incorporated branch in Germany) recently started using Deep Packet Inspection and is decrypting all SSL traffic. While they're not logging all keystrokes, they can read everything.
Reading about this topic, it seems this is also not legal, especially when limited personal internet usage is allowed as well in the contract.
What's the right way to approach this issue? I guess if someone brings this up, they'll just update contracts and say that personal internet usage is forbidden? It still feels like someone is watching you.
Reading about this topic, it seems this is also not legal, especially when limited personal internet usage is allowed as well in the contract.
What's the right way to approach this issue? I guess if someone brings this up, they'll just update contracts and say that personal internet usage is forbidden? It still feels like someone is watching you.