this post was submitted on 19 Jun 2023
150 points (100.0% liked)

Technology

37747 readers
143 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
 

Federated services have always had privacy issues but I expected Lemmy would have the fewest, but it's visibly worse for privacy than even Reddit.

  • Deleted comments remain on the server but hidden to non-admins, the username remains visible
  • Deleted account usernames remain visible too
  • Anything remains visible on federated servers!
  • When you delete your account, media does not get deleted on any server
you are viewing a single comment's thread
view the rest of the comments
[–] rubywingedflier@possumpat.io 30 points 1 year ago (5 children)

I understand the impulse but the way some people get so hung up on trying to make a way to permanently and universally delete posts made on public facing social media and framing it as a "privacy" issue feels kinda like saying something you regret on mic at a town hall and being mad that you can't permanently delete the memory of it from the minds of everyone present, and claiming that they violated your privacy by remembering it

[–] mythmon@beehaw.org 6 points 1 year ago (2 children)

it's an interesting idea, but it doesn't vibe with the reality of the laws in the EU which has "right to be forgotten" rules

[–] wet_lettuce@beehaw.org 4 points 1 year ago

The "right to be forgotten" rules are, with all due respect to the EU regulators, pretty shortsighted.

I think the initial "right to be forgotten" lawsuit that Google faced from that Spanish guy-- where he claimed bankruptcy years prior. People( potential lenders?) kept finding that information online through google searches. He sued to have Google remove those sites from the index. He won and the Spanish Judge told Google they had to remove those results from searches.

But it didn't change that the information was still on each site. Those sites, the ones that actually held the information didn't get sued, just Google.

It also opened the door for oppressive governments covering up human rights abuses or hide other information they dont want widely available.

Google appealed and won: https://www.bbc.com/news/technology-49808208

I also want to point out that this Spanish guy's situation is very different from "posting publicly on social media". He was getting written about by others and the courts eventually said "no, this can stand. This information should remain available". So I imagine, public statements made by an individual certainly wouldn't qualify to be forgotten.

At the end of the day, to me, this is a technical decision not a privacy one.

[–] thundermoose@lemmy.ml 0 points 1 year ago (1 children)

GDPR applies to companies operating in the EU, not every single entity on the internet. Posts on random forums are not subject to these laws, so I don't think Lemmy would count.

Now if a Lemmy operator began using user personal data for profit, then GDPR would apply. At the moment, I don't think that's happening anywhere in the fediverse.

[–] Atemu@lemmy.ml 1 points 1 year ago

GDPR applies to companies operating in the EU, not every single entity on the internet

It applies to every single public entity on the internet that holds data of EU citizens. No matter which country they're located in.
AFAIK, this world-wide nature of the GDPR is pretty unique and quite contentious.

The GDPR includes exceptions for private purposes but hosting a lemmy instance with public signups is most certainly not intended to be of private nature, so the GDPR does apply.

I can't comment on whether that means the right to be forgotten needs to be exercised by federated instances, I just want to set the record straight here.

load more comments (2 replies)