You understand that lemmy is also in violation, yes?
Do you mean below mentioned issue?
Lemmy@World instance servers are in the EU. I think in The Netherlands, so they must comply. On the otherhand it’s federated, so messages are copied. Lemmy isn’t as big a platform as Meta, so the rules are less strict, iirc.
As far as I understand it, with federation only your username and the content of your posts and comments is transferred to other instances, which is not personal identifiable information
Do you mean below mentioned issue?
Lemmy@World instance servers are in the EU. I think in The Netherlands, so they must comply. On the otherhand it’s federated, so messages are copied. Lemmy isn’t as big a platform as Meta, so the rules are less strict, iirc.
As far as I understand it, with federation only your username and the content of your posts and comments is transferred to other instances, which is not personal identifiable information
Yes, personal data. That’s a problem. And when that data is copied to the US, then it’s a problem similar to what got the EC fined here.
Not quite. GDPR applies equally to everyone. There are some finer points, but that didn’t matter in this case.
True that, the "G " in GDPR (General Data Protection Regulation) means everyone must abide.
So While Lemmy doesn’t fall in DSA ( Digital Servcie Act) it still needs to comply with GDPR. For more info Similarities and Differences between the GDPR and Other European Laws
A small platform like Lemmy is exempt from much of the DSA but far from all of it.
Lemmy is too small of a fish for prosecution to make sense