I understand that very few (or no) websites actually delete anything. They just mark them as “deleted”. But this usually means that once something is deleted, users have no ability to see the deleted data. This doesn’t seem to be the case with Lemmy.
I’ve been trying out the Android app called Connect for Lemmy, and it shows the contents of all deleted comments with a “DELETED” word on them. See the uploaded screenshot.
This seems bad to me. Users expect that deleted comments are no longer viewable, and won’t be returned by Lemmy’s API. Lemmy still shows the username of the deleted comments, which was bad enough, but now I’m seeing that it doesn’t prevent apps from seeing the deleted comments.
What are your thoughts on this?
This seems to be non-compliant to the GDPR:
I wonder if Lemmy instances run by a person (and for personal reasons, i.e. with no intent to generate profit) would qualify for Article 2© exemption from the GDPR:
I’m not sure how a judge would interpret “purely personal” in this context. There seems to be some discussion of the matter at the following link, which leads me to think it would not be exempt:
https://law.stackexchange.com/questions/28070/would-gdpr-affect-my-own-personal-website
This is also non-compliant with Brazilian’s LGPD
Not that I care about what my country’s law says, but I fond it ironic that a free, decentralized platform violates laws of data protection