this post was submitted on 28 Jun 2023
45 points (84.6% liked)

Privacy

32103 readers
510 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

I was thinking about this recently… By going to a federated system, one that essentially copies all of your content from one instance to another, when you delete a comment, does that comment get deleted on every instance? Is that even possible?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 1 year ago (3 children)

Then again this is the idea the European 'right to be forgotten' wants us to believe.

[–] [email protected] 4 points 1 year ago

No, the right to be forgotten is about data that can be used to identify you stored by a service provider. It's not a right to have every record on the internet purged.

I guess you could force Instances one by one to forget you, but a single provider only has to make sure they deleted the data they stored.

[–] [email protected] 3 points 1 year ago* (last edited 1 year ago)

No, that right is to have info tracable to you personally removed, not to have every word you ever stated removed. As long as they anonymise it, they're good legally and can keep all other data online.

They also only have to send a data delete request to those they shared it with. Any data that got scraped or taken in other ways from them by a third party is technically not protected under that law, and would require a deletion request from you to them. And let now that be the technique used to federate.

Not to forget that the law only counts for services hosted in or aimed at European Union citizen. For example, an American Lemmy instance aimed specifically at American citizen isn't bound by it, even if you join as a European Union Citizen. If they market to the whole world or such, then they are bound by it. But then, with a US-based server it's already nearly impossible to be GDPR compliant as US-law is by default against GDPR. Hence big SNS's having EU subsidaries and servers (and still have huge disagreements, lawsuits and fines about how data gets shared between those and non-EU servers). Point being, with defederated systems, there are bound to be servers with your data that are outside the scope of the GDPR. The whole thing is more complex than "I live in the EU so all sites need to comply when it regards me".

[–] [email protected] -1 points 1 year ago

Wishful thinking. They've deluded themselves into thinking data can be externally controlled. The fact that the Pirate Bay is still in operation should have given them a hint.