zlacker

[return to "GDPR: Don't Panic"]
1. spacen+dj[view] [source] 2018-05-18 11:57:06
>>grabeh+(OP)
I don't think it's really that simple. especially the deletion requirements. There are just so many IT systems that really don't support deletion. An absolute worst case I can imagine is GitHub being asked to delete an account which had commits in multiple large projects. Are they going to alter those projects source code?
◧◩
2. madeof+Pj[view] [source] 2018-05-18 12:04:04
>>spacen+dj
This is already a “solved problem” though. If you post copyrighted material to Github, Github will have to remove it.

If you’re posting users information to a public repo, then you fully deserve whatever impacts you’ll face when you have to delete it.

◧◩◪
3. spacen+jv[view] [source] 2018-05-18 13:53:55
>>madeof+Pj
I'm not talking about copyrighted or otherwise shady stuff pushed to GitHub. My concern is what's supposed to happen when a GitHub user requests GitHub to delete their entire account and all the personally identifying information they have on them. Clearly GDPR calls for this to be possible, yet that would mean that GitHub would have to delete this user's commits (which usually contain full names and mail addresses). Clearly they can't reasonably do that though.
[go to top]