|
· Föderation EN So 05.05.2024 20:16:28 @alwayscurious @gabrielesvelto I would agree that IPFS should only be used for these things. Unfortunately, it has already been used to distribute malware and CSAM material. If I understand GDPR and other data regulations correctly, the right to delete personal data does not apply only to personal data that you personally store. As far as I know IPFS does not have a delete function and would prevent anyone or any organization from complying with a legitimate GDPR delete request. I like IPFS technology, but I would not want to bear the legal or reputational risk associated with data regulation non-compliance. I would like to be wrong about my interpretation. Open to any thoughts you might have. |
|
Föderation EN Mo 13.05.2024 01:08:31 @patrick_townsend @gabrielesvelto Usual disclaimer: I am not a lawyer and this is not legal advice. I don’t think a GDPR request to delete one’s information from e.g. the Linux git history would work. Kernel developers have a stronger legitimate interest in keeping that data (repository integrity, IP ownership tracking) than the requestor has in its removal. This works because the Linux git history can only be appended by trusted contributors, so it does not include malware, CSAM, or other illegal material. Any site that allows data to be uploaded by untrusted third parties is much more complex and I would consult with a lawyer before running one. |