What is GDPR? How does it affect AD?
GDPR is the General Data Protection Regulation. It is an EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of that personal data outside of the EU. However, there are certain points that should be noted, and we'll discuss those. You have individual rights when it comes to your account and data, the two primary of these being the Right to be Informed and the Right to Erasure.
The Right to be Informed
- Emphases the need for transparency over how we use your personal data.
The Right to Erasure
- The broad principle here is the right to enable an individual to request the deletion or removal of personal data where there is no compelling reason for its continued processing.
Lawful Bases for Processing
We store a small amount of data in cookies. These are used to authorize user accounts when you re-visit the community. Other cookies are used to provide a service at the user's request, such as changing the Theme.
Why go through all of this?
GDPR is all about being a good steward of the stored data of our users. Note that there is no requirement under the GDPR to delete or remove any information sent to the server by our users. While we do offer you the option to delete your account to comply with the Right to Erasure, it will be at our discretion if we remove all user-submitted content from that account, with the remainder being anonymized. The analogy with this is that it's similar to email: once someone sends you an email, you aren't obligated to delete that email. The same is true of user posted content. Ultimately though, we want our users to feel comfortable in using our services, knowing that their data is ultimately theirs.