• daguito81@waveform.social
    link
    fedilink
    English
    arrow-up
    2
    ·
    2 years ago

    So not a lawyer, but I worked as IT/IS in a GDPR heavy industry in Spain. The way it was explained to me, is that we need to have all processes to delete everything of the user. There is no “do all this work and firgure shit out” If they make a request to be forgotten, we have 30 days to erase them from every system we have save some really specific exceptions. There is not “hoops” because GDPR is extremely “biased” towards the users (i don’t mean bias in a negative way). There is no reasonable way to delete all your comments in 10 plus years of posting. So you can fill out yoru form to delete your account. Then m,ake a GDPR request. and then have some random comments saved (URLs)) so you can check 1-2 months down the line. If you see the comments then you take next steps