this post was submitted on 01 Jul 2023
127 points (97.7% liked)

Selfhosted

39962 readers
463 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
127
Anything else to consider when hosting a Lemmy instance in the EU? (lemmy.one)
submitted 1 year ago by tk338@lemmy.one to c/selfhosted@lemmy.world
59 comments fedilink hide all child comments
 

I'd be really keen to host a lemmy instance but just wondering with GDPR and everything, if there is anything else to consider outside of the technical setup and provisioning of hardware?

Lemmy is storing users data so is there any requirement to do anything GDPR wise?

Hope this is the right place for this - But seen a lot of posts interested in hosting their own lemmy instance, and this is an extension of that

you are viewing a single comment's thread
view the rest of the comments
[–] Max_P@lemmy.max-p.me 12 points 1 year ago (3 children)

Interestingly, they're clearly aware of the existence of the Fediverse: https://edps.europa.eu/data-protection/our-work/publications/techdispatch/2022-07-26-techdispatch-12022-federated-social-media-platforms_en

[–] KSPAtlas@sopuli.xyz 5 points 1 year ago

Don't they have mastodons accounts

[–] tk338@lemmy.one 4 points 1 year ago

Interesting read, thank you!

[–] TheButtonJustSpins@infosec.pub 3 points 1 year ago* (last edited 1 year ago) (1 children)

However, this duplication mechanism renders content deletion or rectification more difficult. In case of deletion by the user, the platforms with duplicates receive usually an automated deletion request and must be trusted to comply and delete their duplicate.

Seems like sending the delete notice is all that's required?

[–] Max_P@lemmy.max-p.me 2 points 1 year ago

Seems like sending the delete notice is all that’s required?

Yes, but

and must be trusted to comply and delete their duplicate.

So because of that trust factor, if you really want to protect yourself and be 100% GDPR compliant, you'd probably want a legal contract with every instance to federate with ascertaining that they are GDPR compliant too to legally deflect blame if you're unable to comply with a data delete request.