Sure, but the deletion is also mirrored to the other instances no?
EDIT: I suppose it should be alright if you mention in your privacy policy that if you interact with other instances their privacy policies apply as well.
Yeah, but companies can also "choose" to ignore GDPR requests. I don't think talking about instances not following the spec and deleting things when requested is relevant.
Sure, but the deletion is also mirrored to the other instances no?
EDIT: I suppose it should be alright if you mention in your privacy policy that if you interact with other instances their privacy policies apply as well.
Yeah, but companies can also "choose" to ignore GDPR requests. I don't think talking about instances not following the spec and deleting things when requested is relevant.
Under normal circumstances. But there could be federation issues, or someone could run a custom version that just ignores all deletion requests.
I'm unsure if that's considered part of the diligence required in Europe.
Edit: does that even apply to public forums such as this? I have always treated it all as if it's public forever.
it should