I requested a copy of my data for my personal backup and to confirm if they fulfilled my request. #GDPR
Edit: As people noted in the replies, this will probably not remove your questions or answers, but only your profile. I'm going to edit with my result once they have fulfilled my request.
#EU#AI#GenerativeAI#GDPR#OpenAI#ChatGPT: "In the EU, the GDPR requires that information about individuals is accurate and that they have full access to the information stored, as well as information about the source. Surprisingly, however, OpenAI openly admits that it is unable to correct incorrect information on ChatGPT. Furthermore, the company cannot say where the data comes from or what data ChatGPT stores about individual people. The company is well aware of this problem, but doesn’t seem to care. Instead, OpenAI simply argues that “factual accuracy in large language models remains an area of active research”. Therefore, noyb today filed a complaint against OpenAI with the Austrian DPA."
"OpenAI is facing another privacy complaint in the European Union. This one, which has been filed by privacy rights nonprofit noyb on behalf of an individual complainant, targets the inability of its AI chatbot ChatGPT to correct misinformation it generates about individuals.
The tendency of GenAI tools to produce information that’s plain wrong has been well documented. But it also sets the technology on a collision course with the bloc’s General Data Protection Regulation (GDPR) — which governs how the personal data of regional users can be processed.
Penalties for GDPR compliance failures can reach up to 4% of global annual turnover. Rather more importantly for a resource-rich giant like OpenAI: Data protection regulators can order changes to how information is processed, so GDPR enforcement could reshape how generative AI tools are able to operate in the EU.
I do like privacy protections, of course. However my experience with the GDPR hasn't been good. It becomes incredibly bureaucratic, and has hindered internal investigations into wrong doing in some #iww proceedings.
Every #PrivacyPolicy: "We follow the law"
No shit, Sherlock! I was expecting that much of you. That doesn't mean, that you don't exploit loopholes where you can.
We need an independent regulator to ensure strong protections and get redress when things go wrong.
But the Data Protection and Digital Information Bill (UK) weakens the role of the Information Commissioner's Office. That’s why we've presented amendments.
The #DPDIBill (UK) gives the Information Commissioner's Office discretion to dismiss complaints unless you’ve first contacted the organisation that holds your data.
This will worsen their already poor track record of enforcement.
✅ ORG’s amendment removes this discretion from the Bill.
I thought the cookie consent alerts were bad back in the states, but - WOW. If I lived here (visiting Europe), I would FAR rather have cookies just set and not be told about it vs. this level of in-your-face, at-every-turn COOKIE ALERT, without question. Oy.
@HauntedOwlbear@cyrus@blakespot It might haven gotten better, but i never got Consent-o-matic to work in my browser...
Having succes with add-on Ghostery for firefox.
@jowek
Consent-o-Matic does the trick for Firefox 123.0.1 (64-bit) for me (on Pop!_OS Linux), but I'm aware that "it works on my system" means little in the grand scheme of things. :D
L'uso di Microsoft365 da parte della Commissione europea viola la legge sulla protezione dei dati per le istituzioni e gli organi dell'UE
A seguito di un'indagine, il #GarantePrivacy europeo per la protezione dati #EDPS ha riscontrato numerose violazioni del #GDPR da parte della Commissione europea nell'utilizzo di #Microsoft365 e ha imposto una serie di misure correttive
Actually I can't really bash #Lemmy for this (as much as I'd want to) because it seems like pretty much the rest of the #fediverse has this problem of images not getting immediately removed from the server when you delete the image or even your account. I've tested with #Mastodon, #Pleroma, and #Misskey (even Misskey somehow gets it wrong by not immediately making your image unavailable by the URL even if you've deleted it from your Drive, however this doesn't always happen, see below).
Now I'm not sure about instance admin stuff (and I haven't tested with my admin hat on in this Misskey), but I'm guessing you don't have a view of all uploaded photos by a user that an admin can delete from in Mastodon and Pleroma either (please prove me wrong though!). :sagume_think: Misskey does let you view all files uploaded by a user and delete from there, though I'm not sure if the file gets immediately removed from the server once you hit delete, but it's probably gonna be like what I'm going to write below
What I do know about Misskey is that, if you've never accessed the URL generated for the file in your Drive, and hit delete, the next time you access it, it definitely will no longer be available; a pure 404 as expected. However if you've accessed the URL at least once, then the file will get cached. I'm not sure if it's Misskey doing this or the reverse proxy (like #nginx), because clearing cache or switching to a whole 'nother browser still shows the file is available.
Oh, and have I mentioned that all three software will automatically put your image into the server the moment you hit the upload button, even if you haven't submitted the post yet? Yeah it's equally as easy as Lemmy to accidentally upload something to those three as well.
@mima I feel like everyone's just handling this really badly.
Developers just can't be bothered to be GDPR/PDPA compliant because it takes effort
Users (like OP) being in bad faith against the developers and thinking they don't care about privacy (they do but don't have time)
Fediverse's strongest point, decentralization, is a weakness. Once you post something, someone somewhere will be hoarding data for future reference or out of neglect. General rule of the internet: Once something's on the internet, it stays on the internet.
Oh, and if you delete your account? It doesn't delete your uploaded photos. And good luck getting your instance admin to delete it; it requires a manual db query, api call, and — oh, none of this is documented? Welcome to my #fediverse#GDPR nightmare 💣🤯