// Comparison

OSINT Techniques vs RGPD et droit des données personnelles: Which Should You Read?

Two cybersecurity books on Privacy, compared honestly: who each is for, what each does best, and which to read first.

Intermediate

5/52024

Resources for Uncovering Online Information

Michael Bazzell

Michael Bazzell's relentlessly updated technical manual for finding people, accounts, breach data, geolocation evidence, and online identifiers — the de facto reference of the modern OSINT field.

Intermediate

3/52021

RGPD et droit des données personnelles

Fabrice Mattatia

A complete French manual on data-protection law under the GDPR and the 2018 loi Informatique et Libertés — obligations, rights and how to comply — by an engineer and doctor of law.

Read this if

Investigators, journalists, threat-intel analysts, fraud teams, and anyone whose job depends on what they can verify from public sources. The single most utilitarian OSINT book in print; Bazzell rewrites it nearly every year because the field's surface keeps moving.

DPOs, developers, managers and students who need a clear, structured guide to GDPR obligations and French data-protection law in practice.

Skip this if

Readers wanting an academic intelligence-cycle textbook or a single tidy OSINT methodology. Bazzell's strength is breadth, currency, and tooling — if you want methodology before tools, read Hassan & Hijazi first. Also written for North America; non-US techniques are sparser.

Readers outside the EU legal context, or anyone wanting security technique; it's a legal-compliance manual, and law changes, so check the latest edition.

Key takeaways

Treat the book as a current toolbox, not a finished doctrine — the URLs and tools die, the workflow Bazzell teaches outlives them.
Build a separate VM and disposable identity per investigation; the book's OPSEC posture is non-negotiable for serious work.
Breach-data, username, and email pivots are still the highest-yield queries in 2026; everything else is supporting evidence.

A clear, complete French manual on GDPR and data-protection law for non-lawyers.
Mattatia is both an engineer and a doctor of law, so it bridges technical and legal worlds.
Law evolves: use the most recent edition and verify against current CNIL guidance.

How they compare

We rate OSINT Techniques higher (5/5 against 3/5 for RGPD et droit des données personnelles). For most readers, that means OSINT Techniques is the primary pick and RGPD et droit des données personnelles is a useful follow-up.

Both books target intermediate-level readers, so the choice is about topic, not difficulty.

OSINT Techniques and RGPD et droit des données personnelles both cover Privacy, so reading them in sequence reinforces the same material from different angles.

Keep reading

OSINT Techniques

→ Alternatives to OSINT Techniques → What to read after OSINT Techniques