• TheFork@kbin.social
    link
    fedilink
    arrow-up
    2
    ·
    1 year ago

    Reddit is bullshitting about subreddits not being deletable. Yet, GDPR helped me to force them to delete a sub named after my real name that I made long ago. So it seems GDPR works quite well.

    • blazix@kbin.social
      link
      fedilink
      arrow-up
      2
      ·
      1 year ago

      Perils of living in Massachusetts. I hope similar laws pass federally in the United States.

      That being said, I’ve been on the other side of GDPR. Getting ready for GDPR around 2017 was so much work. We initially had a lengthy confluence runbook with all the places data had to be deleted from. It took a while to automate. Painful, but it’s the right thing to do.

      RE: OP

      I’m pretty sure this is in violation of both GDPR/CCPA

      IANAL, but I agree. In my past companies, when a GDPR deletion request comes, we follow through and delete the data. We might ask users to verify their identity but that’s about it. It should be 2-3 emails back and forth.

      • 00@kbin.social
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        I hope similar laws pass federally in the United States.

        Best of luck!
        Since you seem to have some experience with dealing with GDPR/CCPA requests, i have a question. Couldnt US americans from other states just claim they live in California and make a CCPA request? At most you could use a VPN Server based in California (although that might be easily identifiable) or just claim you only use their service through a VPN/Proxy and you have recently moved to california. Or does a CCPA request require official documents to prove residency?