Using snooping software for recording of all command lines, including arguments, is common practice at many companies.
Also when network connections are recorded it does not stop at a list of ips, surveillance software commonly also provide easy-to-consume search facilities and cross reference capabilities, dashboards including comprehensive history and supplied annotation, i.e can tell when and how often you visited facebook.com, what you looked at, how much time you have spent at non-essential sites, and of course it also does this when you're at home using your employer's laptop for WFH or anything else.
The same is true when using a company phone when travelling, it can not only tell your employer where you're staying currently, but also where you usually stay at your holidays.
One such software is ms atp, if you have "Advanced Threat Protection" installed, it does occur. I would be surprised if it holds up in any EU court, because when I worked with development of similar software, long before gdpr, it did not.
Also when network connections are recorded it does not stop at a list of ips, surveillance software commonly also provide easy-to-consume search facilities and cross reference capabilities, dashboards including comprehensive history and supplied annotation, i.e can tell when and how often you visited facebook.com, what you looked at, how much time you have spent at non-essential sites, and of course it also does this when you're at home using your employer's laptop for WFH or anything else.
The same is true when using a company phone when travelling, it can not only tell your employer where you're staying currently, but also where you usually stay at your holidays.
One such software is ms atp, if you have "Advanced Threat Protection" installed, it does occur. I would be surprised if it holds up in any EU court, because when I worked with development of similar software, long before gdpr, it did not.