Was there even a mass exodus? I largely avoid Reddit now, but I do kind of doubt that they’ve been hurt in any meaningful way by all the protests and people leaving…
Was there even a mass exodus? I largely avoid Reddit now, but I do kind of doubt that they’ve been hurt in any meaningful way by all the protests and people leaving…
deleted by creator
Migration goes beyond sheer numbers. The 3.8k users are probably the one that were the most attached to initial Reddit, hence people who would contribute the more. I would rather be with those 3.8k users than the millions of people okay with staying on Reddit despite Spez’s decisions.
I hope that once Lemmy is a bit more polished (instance blocking, account migration, hot filtering working etc.), we will gradually see a second wave of arrivals.
I doubt it, and if it does get successful, there’s unfortunately lots of ways it can be taken down by lawsuits if the big players want to.
It’s currently impossible to follow a GDPR information delete request for example, because you can’t delete the info from other instances.
And if any user uploads copyrighted material, the instance admin is liable.
Same with illegal material.
For these reasons, the Fediverse is incredibly vulnerable to a constant death and creation of instances which will make creating a collection of valuable info (like on reddit) impossible.
But I’m enjoying it while it lasts.
But if that were the case, wouldn’t GDPR already be used to take down TOR or torrents or any other p2p tech? All it would take is someone’s personal information being on them, right? (I’m really asking I have no idea)
TOR nodes and torrenters are taken down or charged all the time.
The fediverse itself can’t be taken down, but if you take down instance admins often enough, you force users to keep making new accounts and new communities. Something that prevents establishing a real social network.
Then you adapt to that threat with user exports or built in auto migration methods.
The distributed nature makes it much harder to down the fediverse with legal claims than it does reddit/twitter/whatever already. Just being hosted in different countries makes these claims a stunning pain in the ass, as many countries do not require any compliance with the DMCA.
Sure if you want to play in a sandbox alone and have nothing but privacy and lqbgt content (nothing against them in the least bit).
What makes it impossible? Why would any given instance maintainer be responsible for the data on someone else’s instance? Would it not fall on the GDPR requester to make that request of each individual instance?
The requester can have no idea where his data ended up. That’s why the admin who receives the data is responsible for who he gives it to. And he also has to forward the delete request to whoever he gave it to.
Otherwise, customers of an online service that sells their data would have to request deletion from everyone who bought it, which is impossible cause they don’t know who that is.
The regulation was written to give people more control over their data, but it has no provision for something like federation, and it also doesn’t allow for a “do whatever you want with my data” box the users could check.
The regulation was written to give private users control over what big corporations can do with their data. It doesn’t fit for non-commercial (but also not private) use by a loose group of admins. But legally, it still applies.
So then if someone requests that Gmail delete all their email data, is Google then responsible for making sure any emails sent out from it’s server to another is also deleted from those external servers?
See https://gdpr-info.eu/issues/right-to-be-forgotten/
Once the “controller has made the personal data public”, they have legal obligations. When you send an email, you are not making it public.
Unless these instances are showing ads and selling data, I’m pretty sure they’re protected from the law. Not only that but if you’re not hosting in the EU that law doesn’t apply to you.
Making money is not a requirement for the GDPR to apply. Neither is being based or hosting in the EU.
In fact, the example the EU provides on their site is of a company that offers free services (and is based outside of the EU):
https://commission.europa.eu/law/law-topic/data-protection/reform/rules-business-and-organisations/application-regulation/who-does-data-protection-law-apply_en
The problem here is how does that work? If I host something in the USA, how is someone going to bring a lawsuit towards me if I am also in the USA?
Asking honest questions here. As this just sounds like a lot of chest thumping from the EU.
“Provided your company doesn’t specifically target its services at individuals in the EU, it is not subject to the rules of the GDPR.”
Just say, we don’t provide or target EU individuals and you’re free.
See https://gdpr-info.eu/issues/right-to-be-forgotten/
Once the “controller has made the personal data public”, they have legal obligations.
Yes, but “the controller” is one instance, and it’s certainly easy for one instance to allow a user to be forgotten. You can purge the user from the instance. Then they are forgotten, as far as the instance is concerned.
As an example, just because someone makes a GDPR request on YouTube to delete a video, does not require Google to actually remove the video from the whole internet. There are plenty of websites that archive content which are unaffected by that GDPR request. It’s the exact same thing with different Lemmy instances, just because you ask lemm.ee to delete your content does not mean that lemmy.world needs to delete your content.
The GPDR doesn’t require Lemmy to remove personal data from the entire internet. But when a Lemmy instance gives data to other Lemmy instance, there are legal responsibilities.
https://gdpr-info.eu/art-17-gdpr/ Where the controller has made the personal data public and is obliged pursuant to paragraph 1 to erase the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that the data subject has requested the erasure by such controllers of any links to, or copy or replication of, those personal data.
==========
Maybe this is open to interpretation, but I feel that the same Federation protocol that federates out my personal data (my posts and comments), should also federate out my delete requests. I’m unsure why this would be controversial.
I wish some of the subs I frequented the most were a bit more active here, but I guess it’s a bit chicken and egg. Need to interact more with Lemmy ourselves to motivate others to.
deleted by creator