As the Fediverse grows more and more, rules and regulations become more important. For example, is Lemmy GDPR complient? If not, are admins aware of the possible consequence? What does this mean for the growth of Lemmy?
As the Fediverse grows more and more, rules and regulations become more important. For example, is Lemmy GDPR complient? If not, are admins aware of the possible consequence? What does this mean for the growth of Lemmy?
[This comment has been deleted by an automated system]
Isn’t the key operating word here business?
With no advertising on the line and no operations currently in place operating at anything but a loss there isn’t a commercial interest at stake.
Charities and other types of non profits have to comply with the GDPR too. Just because you’re not making any money doesn’t mean you can ignore privacy law.
I think it also depends on how you tell the tax authority about your donations. There are tax rules about gifts versus donations versus income. It can easily be beneficial to report donations as income for some small company rather than pay tax over donations, depending on the country where you live. Alternatively, you could commit tax fraud and not report the donations at all, but then privacy law is probably not your biggest concern.
Nope, GDPR does not limit itself on businesses. It applies to all data collection.
Governments also have to comply with GDPR. They also have no commercial interest in the personal data.
My statement about it being up to those running instances is mean in terms of it’s up to them to read the legislation and come to a conclusion. If I were hosting an instance I’d certainly assume it applied, though I doubt there has been any case testing its implementation in this sort of situation.
I wonder if the first data breach will draw the attention of a regulator. We’re all using essentially alpha software, with no privacy notice, I doubt there are RoPAs or DPIAs, I doubt there is a DPO… all those things might upset someone like the ICO in the UK if a breach were to occur.
Edit: saying that, I’m not sure any breach would even be reportable given what data is collected by Lemmy.
deleted by creator