GDPR and Boards.ie post removal policy **update linked in OP 24/5/18**

LuckyLloyd

Hurrache wrote: »

There are exceptions, but what business justification to protect its business can Boards claim? How do they monetise posts and therefore lose revenue if a users posts are deleted?

That posts being maintained are a core part of the site's offering (for deletion requests); and the ability to talk about users in private forums is essential to maintaining rule based integrity of the site (for denying access to those posts)

If someone disagrees with that they'll likely have to win a judgement on the topic in court.

Permabear

This post has been deleted.

LuckyLloyd

Permabear wrote: »

This post had been deleted.

I said legally "defensible", not legally "correct". You can interpret or argue a balance of rights and try and draw a conclusion favourable to your position. Whether that would bear out under the ultimate scrutiny in court is a different question. But you can certainly start at point A and legally defend yourself against anyone arguing you should be at B - Z.

Bob24

Just came across an exemple of why it was critical for companies to make sure their business model is not at odds with GDPR and address potential issues well ahead of time: http://bitcoinist.com/parity-forced-to-shut-down-picops-due-to-gdpr/

This goes to show that “GDPR can’t work that way or otherwise how can I operate my service” is not an appropriate reaction. There will be services closing down because of lack of preparation.

_Dara_

Hurrache wrote: »

Yes, we've been over it, it's irrelevant if it's a requirement.

Well, personally, I hope boards.ie loophole the fuck out of it if it does become a requirement. Otherwise, it's the death knell of the site.

_Dara_

RHJ wrote: »

This post has been deleted.

What? Many Reddit threads are unreadable due to post deletions.

Hurrache

_Dara_ wrote: »

Well, personally, I hope boards.ie loophole the fuck out of it if it does become a requirement.

Yeah, that will go well.

.......

This post has been deleted.

_Dara_

Permabear wrote: »

This post had been deleted.

If you just supply your social media details such as Facebook but don't mention your boards.ie handle, why do you think the US government would start trawling boards.ie trying to find you? Does that seem likely to you?

Beasty

_Dara_ wrote: »

If you just supply your social media details such as Facebook but don't mention your boards.ie handle, why do you think the US government would start trawling boards.ie trying to find you? Does that seem likely to you?

If the US Government were interested I suspect anything done to "permanently delete" stuff over here may not be as effective as some might think/hope:)

Permabear

This post has been deleted.

_Dara_

Well, the example given is a poor one. It’s stretching the limits of plausibility to think that your messageboard account, complete with a username that, at best, might vaguely resemble your real name will be honed in on by the US government, especially as there are many messageboards aside from boards.ie. Even on a practical level, the manpower wouldn’t be there even if the will was. Social media accounts with your real name attached will be the focus and even then, I’d question whether the manpower would be there to vet everyone’s.

Hurrache

With social media accounts it's not like someone in the NSA are sitting there trawling though everything you ever posted. It's automated and will flag anything with certain keywords, key phrases, photos and so on, and only then may someone manually look into things.

_Dara_

Hurrache wrote: »

With social media accounts it's not like someone in the NSA are sitting there trawling though everything you ever posted. It's automated and will flag anything with certain keywords, key phrases, photos and so on, and only then may someone manually look into things.

Yes, of course. But boards.ie alone has thousands and thousands of registered users. It is so massively unlikely that you would be found. They'd maybe narrow it down to a stable of users who might be you. And that's as close as they'd get. If they'd bother. Which they wouldn't.

Permabear

This post has been deleted.

_Dara_

I think it’s very pertinent to highlight the differences between social media platforms and messageboards. People have been equating them on this thread, even going as far as to call boards.ie a social media website. It’s not, it’s very different for so many reasons. The key one being that from the outside looking in, for all practical purposes, people aren’t readily identifiable and very rarely can you definitively prove that you know a particular forum member.

Will this legislation affect boards? No doubt but I think the anonymity will help it. Nobody knows how this will pan out yet.

I for one will hoping that boards.ie can work around it to keep threads intact.

.......

This post has been deleted.

blackwhite

Permabear wrote: »

This post had been deleted.

You keep seeming to miss the point that under GDPR, that this isn't an absolute.
There are numerous reasons allowed under the legislation (and they have been linked to and quoted already on the thread) where deletion requests do not have to be acceded to - not least that it's still very debatable under the legislation as to what content on Boards would be deemed to actually constitute personal data.

Bob24

Permabear wrote: »

This post had been deleted.

You might enjoy reading this and mapping posters to the various stages ;-)

https://venturebeat.com/2018/04/29/the-7-stages-of-gdpr-grief/

.......

This post has been deleted.

Hurrache

....... wrote: »

This post has been deleted.

Which is the unfortunate thing as there's been a 2 year lead in to the implementation date.

Permabear

This post has been deleted.

_Dara_

....... wrote: »

This post has been deleted.

I have no doubt this happens occasionally. I've identified people.

But it strikes me that people are worried about being identified because it might affect their life with regards to future employment or whatever. That's the bit I really struggle with. It is so vanishingly unlikely that this will happen. The example give of the US government vetting social media only highlights that for me. If you don't mention your messageboard handle, how likely is it that messageboards will be combed for traces of every single individual that visits the country? Or even just individuals who social media profile causes them to be flagged?

Or if you applied for a job. How would a potential employer tackle the totality of boards.ie posts to try and identify you among the thousands and thousands of registered users?

People are thinking theoretically here, I'm coming at it from a practical angle. Manpower, will, time - these things are all required.

.......

This post has been deleted.

Permabear

This post has been deleted.

Beasty

Many employers can already track all online activity on their systems. If posters are concerned about that I suspect many can already be traced by their employer.

Permabear

This post has been deleted.

Franz Von Peppercorn

....... wrote: »

The issue for boards.ie is that they are one of (the?) biggest irish discussion forum.

If someone is going to make a complaint about a GDPR breach that involves message boards, boards.ie have the biggest exposure.

askaboutmoney, peoplesrepublicofcork etc will all be thinking that they can wait and see how it pans out with boards.ie

No point in boards.ie leaving themselves wide open to a massive fine (20 mill or 4% of turnover - whichever is bigger) so they would be wise to over compensate and let someone else get taken to court.

These kind of max fines only happen if the company is in breach, is found to be so by the data commissioner and is taken to court and loses. The first thing that happens is they are requested to fix things. It’s only on multiple violations that a court case ensues.

What boards could do is consult with the DC and see if they are in violation by not allowing posters to delete all posts on closing accounts. I doubt it.

Hurrache

They had two years to discuss it, and they still don't seem to have a policy.

Bob24

Hurrache wrote: »

They had two years to discuss it, and they still don't seem to have a policy.

I’d say some lawyers, managers, and engineers are currently locked-up in a room 20 hours a day to work on it after realising there was a bit more work involved than originally expected ;-)