As the Fediverse grows more and more, rules and regulations become more important. For example, is Lemmy GDPR compliant? If not, are admins aware of the possible consequence? What does this mean for the growth of Lemmy?

Edit: The question “is Lemmy GDPR compliant” should mean, does the software stack provide admins with means to be GDPR compliant.

Edit2: Similar discussion with many interesting opinions on lemmy.ml by /u/[email protected]–> https://lemmy.ml/post/1409164

Edit3: direct link to philpo great answer–>https://feddit.de/comment/840786

    • cakeistheanswer
      link
      fedilink
      31 year ago

      Isn’t the key operating word here business?

      With no advertising on the line and no operations currently in place operating at anything but a loss there isn’t a commercial interest at stake.

      • Firipu
        link
        41 year ago

        Governments also have to comply with GDPR. They also have no commercial interest in the personal data.

    • @seacocker
      link
      2
      edit-2
      1 year ago

      My statement about it being up to those running instances is mean in terms of it’s up to them to read the legislation and come to a conclusion. If I were hosting an instance I’d certainly assume it applied, though I doubt there has been any case testing its implementation in this sort of situation.

      I can see someone starting a lawsuit against a standards incompliant server that ignores deletes and edits, though.

      I wonder if the first data breach will draw the attention of a regulator. We’re all using essentially alpha software, with no privacy notice, I doubt there are RoPAs or DPIAs, I doubt there is a DPO… all those things might upset someone like the ICO in the UK if a breach were to occur.

      Edit: saying that, I’m not sure any breach would even be reportable given what data is collected by Lemmy.