this post was submitted on 25 Jun 2023
688 points (100.0% liked)
557 readers
1 users here now
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Whenever I do this with other companies I do a SAR to get a copy of the data, then a RTBF request to get the data removed, then another SAR to see what they retained.
A significant number say they delete your data and then happily send it back to you a coupla months later when you make an SAR. The ICO loves those ones.
That's a great idea, I'll do this too.
Having also worked somewhere that was under GDPR, weaponised bureaucracy like this can really be used to consume staff resources.
Edit: it looks like Reddit have changed their data request form. To make a full GDPR request, with the additional data in the template, you'll need to email your request to Reddit (redditdatarequests@reddit.com).
You can not only request your data, but also request information regarding how your data is processed and also about psudo-anonymised data. These are much harder to automate a response to.
See here for examples from the template: