Was there even a mass exodus? I largely avoid Reddit now, but I do kind of doubt that they’ve been hurt in any meaningful way by all the protests and people leaving…

  • superkret@feddit.de
    link
    fedilink
    arrow-up
    15
    arrow-down
    1
    ·
    1 year ago

    The requester can have no idea where his data ended up. That’s why the admin who receives the data is responsible for who he gives it to. And he also has to forward the delete request to whoever he gave it to.
    Otherwise, customers of an online service that sells their data would have to request deletion from everyone who bought it, which is impossible cause they don’t know who that is.
    The regulation was written to give people more control over their data, but it has no provision for something like federation, and it also doesn’t allow for a “do whatever you want with my data” box the users could check.

    The regulation was written to give private users control over what big corporations can do with their data. It doesn’t fit for non-commercial (but also not private) use by a loose group of admins. But legally, it still applies.

    • grte@lemmy.ca
      link
      fedilink
      arrow-up
      46
      ·
      1 year ago

      So then if someone requests that Gmail delete all their email data, is Google then responsible for making sure any emails sent out from it’s server to another is also deleted from those external servers?

      • Fapper_McFapper@lemmynsfw.com
        link
        fedilink
        arrow-up
        44
        ·
        1 year ago

        Just in case you guys are wondering, there’s probably dozens of us enjoying the fuck out of this conversation. Thank you for asking questions I wouldn’t think of asking. On behalf of all three of us lurking.

      • whoisearth@lemmy.ca
        link
        fedilink
        arrow-up
        11
        ·
        1 year ago

        I don’t have the answer but I think of it like this.

        Email is essentially a direct conversation between you and someone in the same room but you may extend (cc) to those people in the house. There is an implicit “I am including you in the conversation”

        Lemmy on the other hand is more akin to talking to someone in a crowded bar but the conversation is recorded and anyone over the world has the ability to listen to the conversation at any given time.

        Apples and oranges.

        • Blaze (he/him)@sopuli.xyz
          link
          fedilink
          arrow-up
          10
          ·
          1 year ago

          Interesting perspective, but then cannot we consider that Lemmy users are aware that they are including all of the Fediverse in their conversation? That way Lemmy instances could be treated in the same way email providers are

      • ProstheticBrain@sh.itjust.works
        link
        fedilink
        arrow-up
        5
        ·
        1 year ago

        Essentially yes, it’s called the Right to Erasure or the Right to be Forgotten. If the user is in a country that adheres to GDPR and the company controlling the data operates in a country that also uses GDPR, then that right applies.

        The only reason Google/Gmail wouldnt delete (or wouldn’t be able to delete) some of your data would be if they had a lawful or legitimate basis for holding onto it.

        I can’t think of a reason Google would give for hanging on to your data but that doesn’t mean there isn’t one, but they’d have to notify you of that reason as part of their response to your request.

    • SupraMario@lemmy.world
      link
      fedilink
      arrow-up
      8
      arrow-down
      1
      ·
      1 year ago

      Unless these instances are showing ads and selling data, I’m pretty sure they’re protected from the law. Not only that but if you’re not hosting in the EU that law doesn’t apply to you.

        • SupraMario@lemmy.world
          link
          fedilink
          arrow-up
          10
          ·
          edit-2
          1 year ago

          The problem here is how does that work? If I host something in the USA, how is someone going to bring a lawsuit towards me if I am also in the USA?

          Asking honest questions here. As this just sounds like a lot of chest thumping from the EU.

          “Provided your company doesn’t specifically target its services at individuals in the EU, it is not subject to the rules of the GDPR.”

          Just say, we don’t provide or target EU individuals and you’re free.

          • King
            link
            fedilink
            arrow-up
            1
            ·
            1 year ago

            Just say, we don’t provide or target EU individuals and you’re free.

            Don’t allow users from the EU to sign up? Is that your plan?

            • wanderingmagus
              link
              fedilink
              arrow-up
              1
              ·
              1 year ago

              Seems to be the plan for an increasing number of social media companies. As far as Lemmy is concerned, if it and other related services get killed, that just drives us underground to the darknet and the old tried and true chat services still being used there. As the old saying goes, can’t stop the signal, and every empire falls to ruin eventually. We’ll see how long it takes for Rome to crumble this time.

              • King
                link
                fedilink
                arrow-up
                2
                ·
                1 year ago

                Wouldn’t it be easier to fix the delete federation bug so Lemmy could comply with GDPR ?

        • Action Bastard@lemmy.world@lemmy.world
          link
          fedilink
          arrow-up
          9
          ·
          edit-2
          1 year ago

          Yeah, but if you don’t have any assets in the EU for them to seize, and if you’re not present in the bloc yourself it doesn’t matter for shit. They have no jurisdiction or ability to enforce unless you really, really want to operate inside of their market at scale.