this post was submitted on 17 Jun 2023
99 points (100.0% liked)

Reddit Migration

458 readers
1 users here now

### About Community Tracking and helping #redditmigration to Kbin and the Fediverse. Say hello to the decentralized and open future. To see latest reeddit blackout info, see here: https://reddark.untone.uk/

founded 1 year ago
 
you are viewing a single comment's thread
view the rest of the comments
[–] LostCause@kbin.social 14 points 1 year ago (22 children)

I‘ve already heard multiple people say they just roll back any edits and deletes.

[–] MagicalVagina@kbin.social 17 points 1 year ago (2 children)

Isn't this violating the GDPR? At least for European citizens.

[–] SkinOfAnOrange@kbin.social 17 points 1 year ago* (last edited 1 year ago) (1 children)

Yep you have the right to delete your data.

[–] MeowMeow86@kbin.social 4 points 1 year ago (3 children)

Ooh I'm not sure what GDPR is but would including that in the new comments help or is it just bots blindly doing it?

[–] parrot-party@kbin.social 6 points 1 year ago (2 children)

It's a European data law. And no it wouldn't help, they are using scripts to blindly revert bulk changes.

[–] dracgnar@kbin.social 6 points 1 year ago (1 children)

Time to lawyer up, Eurofrens!

[–] Zyratoxx@kbin.social 1 points 1 year ago

Sure I better call Saul

[–] Jon-H558@kbin.social 4 points 1 year ago (1 children)

It would help if they were reverting personal information. You have a right for them to remove any data about yourself. E.g. if I have Reddit my email address and date of birth and real name. Then decided to leave Reddit. They would have to get that data off their servers (or they can't operate in Europe) some companies also need to keep that data in a EU data center not US to keep compliant. just saying "script reverted it" isn't going to save you. Hell we have to be very carefull to wipe it from preprod environment as well (and never store their data in SIt (without irreveesable flipping the personal details)

However the content itself, if cannot be tied back to the person can stay as is. Of course if you have written in your comment "I'm bob Roberts from robertsville and I run bobs grill" that comment has to go so most sites would rather blanket delete. However if you post a guide to grilling that is not personally identifiable then Reddit could keep that data up

[–] LChitman@kbin.social 2 points 1 year ago

just saying "script reverted it" isn't going to save you

I feel like this would actually be worse than someone doing it manually, in terms of GDPR.

I doubt Reddit is ever going to check all these comments manually to see if they do or do not contain personally identifiable data. They have to delete this data. The data also doesn't have to be "hi my name is X and my address is X", it can be anything that could be potentially identifying, on its own or in combination with other identifying data.

[–] SkinOfAnOrange@kbin.social 5 points 1 year ago (1 children)

Currently making the comment to state I am from a GDPR protected country, I am going to screenshot it and see if it changes again.

[–] Jon-H558@kbin.social 1 points 1 year ago

I am not entirely sure it is open and shut on gdpr.

If the post contains any personally identifying information then yes it has to go, but if they disconnect your username/account details from the content and the content is not specifically about you then it can stay up. But it is murky grey area.

[–] DmMacniel@feddit.de 5 points 1 year ago (1 children)

General Data Protection Right. You as the owner of your content have unviolatable rights including the rights of deletion. These rights superseds reddits draconical terms of service who lets be honest nobody reads anyway because they are stupidly long.

[–] Jon-H558@kbin.social 5 points 1 year ago (3 children)

You are not the owner of your content, you are the owner of your personally identifying data. So if tied to you then must go...but if you have written somthing that is not personally identifying then Reddit could keep it

[–] DmMacniel@feddit.de 1 points 1 year ago* (last edited 1 year ago) (1 children)

Okay then it wouldn't be protected by GPDR, but instead Copyright Law (since you are always the copyright holder of your own stuff) which can't be diminished by companies terms of usage.

[–] Jon-H558@kbin.social 2 points 1 year ago

Pretty sure you give can give copyright up in terms of service unlike personal data

[–] mkeee2015@kbin.social 1 points 1 year ago

This is indeed the correct interpretation of the GDRP rules. (Handling and processing of) Personal data, NOT content, are protected/restricted.

[–] ram@lemmy.ca 1 points 1 year ago* (last edited 1 year ago) (2 children)

The GDPR states that data is classified as “personal data” an individual can be identified directly or indirectly, using online identifiers such as their name, an identification number, IP addresses, or their location data.

And if these online identifiers give information specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

In some circumstances, even information related to a person’s job, hair color, or political opinions could be classed as personal data. Usually, this comes down to the context in which the data was collected and whether a data subject could be directly or indirectly identifiable.

https://www.gdpreu.org/the-regulation/key-concepts/personal-data/

So pretty much any significant discourse you have on a platform would be covered under GDPR as an EU citizen. They also have a list of examples on this page too.

[–] S4nvers@kbin.social 3 points 1 year ago (1 children)

The website also states that „properly anonymized data“ is not affected by the GDPR.

The only things from that list, that should be posted on a public internet forum, are race, gender and political views anyways. And it isn‘t really possible to identify a single user based on these data points

By submitting content to Reddit you also granted them an irrevocable license to use it (according to their ToS) and Art.17, 3a of the GDPR protects data that is not identifiable from deletion

But I guess it‘s worth a try. Maybe their DPO is a nice guy

load more comments (1 replies)
[–] Jon-H558@kbin.social 2 points 1 year ago

Data ceases to be personal when it is made anonymous, and an individual is no longer identifiable. But for data to be truly anonymized, the anonymization must be irreversible.

[–] lavender@kbin.social 6 points 1 year ago

I believe it is. Maybe someone should blow that whistle, see how Reddit would deal with an EU lawsuit at the time of the IPO.

load more comments (19 replies)