I think Etherpad Lite is not GDPR compliant #6701
Comments
|
You can delete Etherpads via the admin panel for this. There is also the possibility to move a pad to one revision. Is there anything else we could do to improve the GDPR compliance? |
devnull4242
changed the title
|
I think the user must have the possibilty itself. I think that is not possible. I also don't know why such a basic function is not simply built in. When I have finished working on my Etherpad with a few people, the result and the way there is nobody's business. And if I really need it, I can also export it. And if I don't want to delete it, I don't need to delete it. |
So you'd like to delete the Etherpad yourself. Who should be able to do that? The one that created the pad? If we allow anybody you could have trolls on the public instances that just delete all pads over and over again. |
|
For GDPR-compliance it's not necessary that the user is allowed to delete their own data. Art. 17 provides you the right to demand the deletion of your (personal) data, but doesn't require that you're able to do it yourself. |
So as long as the user hands the pads he worked on to the pad admin they can be safely deleted. |
I don't think anyone can guess Etherpad names unless you take "test" or "12345". Conversely, I once created an Etherpad https://etherpad.wikimedia.org/p/6701. Of course, only those who know it write there. However, I think it is completely unrealistic to contact. For Wikimedia you can use https://phabricator.wikimedia.org/maniphest/task/edit/form/75/ but you must register with e-mail first. But what about other etherpads? It is also the case that you usually edit in a group and when you are finished, the content is really nobody's business anymore. Also not for trolls. ;-) At https://yopad.eu "The authorisation must be clearly proven and justified by the user, for example in the case of violations of human dignity or personal rights." That's not correct. According to the GDPR, everyone has the right to be forgotten. Individuals have an absolute right to have their data deleted (right to be forgotten) In the end, of course, the question is how to interpret GDPR and perhaps it will also be fulfilled in theory ... theoretically. I don't understand why this function can't or won't be built in. Only someone who has access to the pad and can edit it will delete the pad including the history. I will probably continue to use "Nextcloud Text". Both self-hosted and on a managed Nextcloud. There, the user can delete their data themselves. However, I find Etherpad e.g. Etherpad Lite far better in terms of function. |
|
First of all, I am not a lawyer, so everything I write here is only my understanding. This seems false:
Simply put "personal data" in GDPR is not data by person, but about a person. Furthermore, this data needs to be processed in some way to fall under GDPR. https://gdpr.eu/eu-gdpr-personal-data/ GDPR does not at all regulate Bob's right to have his (let alone others'!) contributions to some generic pad deleted. |
|
I guess the situation changes if some pad would include identifiable information about Bob. Written by either him or anyone else. In this case, the GDPR rights (to be forgotten, to update inaccurate/incomplete information, etc), would probably apply. I suppose this depend on the specific instance. In the case of A, it's not so complicated — technically, you could settle it with an info banner either upon opening the pad, or possibly somewhere outside of it. In the case of B, it could be a bit more complicated, and additional Etherpad functionality could be needed.
I think this could be implemented through the Etherpad's new API token way, or the old "group" part of the API. But I don't know much about either. If going forward with this, I would try figuring out how Google Docs does it. I've looked a bit at it, and talked to ChatGPT about it. I agree drafting some sort of a guideline could be helpful, though personally it just feels weird to poke at this too much. |
|
Thank you for your answers. Maybe I am using Etherpads completely wrong, unlike other people. I see Etherpads as a collaborative platform for several people. If I now create an Etherpad (most with a complicated name), exactly those people will work on it to whom I have given this name. Overall, the Etherpad has a lifetime. Today you can specify when this Etherpad is deleted, e.g. after a day, month or year. However, I think that when the collaborative work is finished, you should also be able to delete the pad manually. I also see no reason why anyone who has previously received the name of the pad should not be able to do this. Manual deletion can also be useful if confidential data has been copied in by mistake or the name of the pad has become known to third parties, e.g. through an incorrectly sent email to the wrong person. But of course. Of course, you can also bide your time or hope that you reach an administrator. |
and others
I think Etherpad Lite is not GDPR compliant because of:
Individuals have an absolute right to have their data deleted (right to be forgotten)
Please add the possibility to delete all old entries of an etherpad. Thanks.
The text was updated successfully, but these errors were encountered: