Home of phpBB
https://www.phpbb.com/community/
as the letter is sent to the letters page it is for publication and is therefore a good analogy of a public forumYou write a letter to the letters page of The Radio Times
That was too vague to me to identify the meaning of publishing a 1:1 copy of my letter (is this even possible? Or is it only the text, without me drawing fancy pictures or writing by hand? I mean: I still don't know which details are published and which are not).
I posted the text of the letter, which was published.AmigoJack wrote: ↑Mon Dec 11, 2017 12:11 pmThat was too vague to me to identify the meaning of publishing a 1:1 copy of my letter (is this even possible? Or is it only the text, without me drawing fancy pictures or writing by hand? I mean: I still don't know which details are published and which are not).
I don't know about where you live but "letters to the editor" are common here in US newspapers. There is specific address for them and the expectation is it will be published in full if selected.AmigoJack wrote: ↑Mon Dec 11, 2017 12:11 pmThat was too vague to me to identify the meaning of publishing a 1:1 copy of my letter (is this even possible? Or is it only the text, without me drawing fancy pictures or writing by hand? I mean: I still don't know which details are published and which are not).
Just re-enforces my point that this regulation is complete and utter overkill bullshit, sorry to say it. As far as I'm concerned, the EU can go kick rocks.Sanborn wrote: ↑Fri Dec 08, 2017 6:13 pm IPs can be considered as personal data, because you can link an IP to an actual person (albeit through the ISP)
Usernames can be considered as personal data, because a lot of people just use their real name for this.
Posts can be considered as personal data, because I can write "Hello I'm John Doe, etc"
Just because a user uses his own name as username or adds personal data in a forum post doesn't make it his problem.
It is your problem if it's on your website. Same goes for pictures, videos, all of that can contain information to identify a person.
Out of the box phpBB has a "location" field in a user profile. There you go, personal data.
There is a difference between personal data and sensitive data. Personal data is your name, your address etc. Sensitive data is your religion, sexual preference etc. GDPR targets personal data, not just sensitive data. If data on your website can contain personal data, then it should be considered as personal data. So eg a username is personal data.
And GDPR enforces you to clean up this info, when a user requests it, or if a user doesn't interact with your website for a period of time.
From what I've been reading on the GDPR (I've been doing quite a bit of research on it since this post... still sticking strong on my stance of non-compliance, but it's still just something to know I guess), this would be exempted from the right to erasure as it would fall under the "free speech" exception... so long as the information is not falsified. The thing that's interesting is that this information can become false at any time, and at that point, you would have to erase that material. It could be as simple as "So and so, who can be seen walking down such and such a street in a blue hat frequently" becoming false when they start wearing a brown hat more frequently. They could theoretically force you in that case to remove the article, should you decide to comply with the regulation.HiFiKabin wrote: ↑Mon Dec 11, 2017 9:55 am I have been thinking about this some more, as well as trying to read/understand the documents. As I understand it, this is about information held and used by YOU the website owner.
Looking at this from a slightly different angle.
You write a letter to the letters page of The Radio Times. The letter is as follows but you sent it to them with your real name and address.
That letter is then published in the Radio Times. You then want The Radio Times to delete your details, They remove your real details from their database, but not the letter. The magazine has been printed, millions of people have seen it, its in the archives, etc etc
You can not go and remove that information as it exists. I think the same applies to the internet.
The information that you give me in order to join my forum (username, password, email address) can be deleted. What you have decided to post on a public forum for anyone to read can be considered to be the same as a published letter. It can (and will) get archived, indexed by Google etc etc.
All IMHO of course as I am still awaiting a reply to my email
... but if it was factually correct at the time of posting it can not be deemed to be false.LaxSlash1993 wrote: ↑Tue Dec 12, 2017 12:31 am<snip>The thing that's interesting is that this information can become false at any time, and at that point, you would have to erase that material. It could be as simple as "So and so, who can be seen walking down such and such a street in a blue hat frequently" becoming false when they start wearing a brown hat more frequently. They could theoretically force you in that case to remove the article, should you decide to comply with the regulation.
<snip>
If you wanted to be GDPR compliant, a mechanism would have to be introduced to remedy this.david63 wrote: ↑Tue Dec 12, 2017 7:35 am One major problem with erasing data that has been posted within a phpBB board (and possibly other boards) is that of quotes. There is no mechanism within phpBB to delete quotes when a user is deleted (whether they have their posts deleted or not) of if their username is changed.
Also if quotes were to be deleted for a user it would make the topic containing the quote meaningless.
The way I understand it, describing the person as someone who wears a blue hat counts as PII in the EU's eyes. Once information is factually inaccurate about a person, that can be used as a vehicle for either removal or change.HiFiKabin wrote: ↑Tue Dec 12, 2017 9:50 am... but if it was factually correct at the time of posting it can not be deemed to be false.LaxSlash1993 wrote: ↑Tue Dec 12, 2017 12:31 am<snip>The thing that's interesting is that this information can become false at any time, and at that point, you would have to erase that material. It could be as simple as "So and so, who can be seen walking down such and such a street in a blue hat frequently" becoming false when they start wearing a brown hat more frequently. They could theoretically force you in that case to remove the article, should you decide to comply with the regulation.
<snip>
If that were the case ALL history, science and other such texts would need to be pulped at least every year.
The sun goes around the world, the world is flat, "here be dragons". All were 'true' at some point in time, and can still be read in the appropriate tome.