1. Posts must be related to the discussion of digital piracy
2. Don’t request invites, trade, sell, or self-promote
3. Don’t request or link to specific pirated titles, including DMs
4. Don’t submit low-quality posts, be entitled, or harass others
📜 c/Piracy Wiki (Community Edition):
💰 Please help cover server costs.
Ko-fi | Liberapay |
Before you do that. Anyone ever done a GDPR request and seen what type of data is provided? Is it just comments and posts or some more extra user identifying details like ip addresses used and outbound clicks and so on?
It contains 31 CSV files, including evert comment, post, everything. Except which alt accounts they think you also have. There’s one for any Twitter accounts you’ve linked, and it has files for everything you’ve voted on.
The real benefit of getting it is you can use the post and comment CSV files with the github version of shreddit (the website version charges you $15) and actually delete everything. PowerDeleteSuite only gets the content on your profile, under New, Hot, Top & Controversial, where each list is limited in size - old comments with lower karma will be excluded.
Also reddit has been restoring deleted content. This may be to do with how reddit CDN servers work, rather than something intentional, but it’s scummy regardless. You have to do it over several days to make sure you get everything.
A full list of what I got:
I’m in the process of doing that right now, it’s been a few days since I asked for the data request, they’re yet to get back to me.
Edit: almost 2 weeks later and nothing! Edit numero dos: July 3rd, finally received my data.
I heard on discord that apparently reddit has like 1 guy handling all the GDPR requests and that they are swamped right now. If it’s true it might be a while. I also heard on r/privacy that reddit was putting old deleted posts back online, so deleting your account isn’t a very reliable option it seems.
That seems like a massive GDPR violation of its true. I’m sure there are some class action lawyers out there who’s love to know if this is true…
Supposedly they have 30 days to comply with GDPR requests, and the theory is they’re waiting until 1 July such that people can no longer use the GDPR files with things like shreddit to edit/delete everything through the API.
I wasn’t referring to the lack of response. But undeleting posts by a user who deleted their account seems like a data retention violation.