Attached: 2 images
👿 PSA: #Reddit is restoring deleted and overwritten posts to save what they consider "their data". This is a new low and probably illegal at least in Europe. You can send a GDPR or CPRA request here: https://www.reddit.com/settings/data-request
These are screenshots of my profile on June 14th before and after overwriting and then deleting all my posts with Powerdelete. Today, June 16th all my posts have been restored by Reddit without my knowledge or consent.
#redditblackout #redditmigration #kbin #lemmy
I just logged in and checked my reddit account, and all my deleted posts have come back.
Copying my comment from another thread below. I have since realised that Reddit does have to be GDPR compliant so it must be applicable, but does it apply to all content?
Would this actually be a GDPR breach? I was thinking about the right to erasure/to be forgotten earlier in relation to a post I saw about how your posts aren’t deleted on other federated instances, if you delete them on your home server. But I figured it wasn’t applicable because it’s not personal data and I’m thinking the same about this Reddit issue. Can anyone set me straight?
‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
Ah, thank you. I didn’t realise the definition covered so much but it makes sense especially with how the data could be used in conjunction with other identifying data. I should obviously brush up on my understanding of GDPR!
It’s a good definition. People are creatures of habit and often reuse usernames or other info across multiple accounts, plus registered emails, so it’s fairly trivial to cross reference and build a uniquely identifiable user profile off of just a single registered “anonymous” account.
Copying my comment from another thread below. I have since realised that Reddit does have to be GDPR compliant so it must be applicable, but does it apply to all content?
Would this actually be a GDPR breach? I was thinking about the right to erasure/to be forgotten earlier in relation to a post I saw about how your posts aren’t deleted on other federated instances, if you delete them on your home server. But I figured it wasn’t applicable because it’s not personal data and I’m thinking the same about this Reddit issue. Can anyone set me straight?
Yes, definition of personal data from GDPR:
Ah, thank you. I didn’t realise the definition covered so much but it makes sense especially with how the data could be used in conjunction with other identifying data. I should obviously brush up on my understanding of GDPR!
It’s a good definition. People are creatures of habit and often reuse usernames or other info across multiple accounts, plus registered emails, so it’s fairly trivial to cross reference and build a uniquely identifiable user profile off of just a single registered “anonymous” account.