From: Joann Mõndresku Date: Wed, 23 Feb 2022 14:59:55 +0000 (+0200) Subject: Why I can't enable registrations. X-Git-Url: https://git.based.quest/%7B%7B%20.Site.Params.Donate%20%7D%7D?a=commitdiff_plain;h=a90b78c06259120b65ba143184c962afab0b2dea;p=web-old.git Why I can't enable registrations. --- diff --git a/articles/why-i-cant-enable-registrations.md b/articles/why-i-cant-enable-registrations.md new file mode 100644 index 0000000..f7e4bde --- /dev/null +++ b/articles/why-i-cant-enable-registrations.md @@ -0,0 +1,47 @@ +Why I can't enable registrations + +If you've used any of my services, you have more than likely have had +to use it as a guest rather than a registered user. There's one simple +reason why I can't allow you to. GDPR... and lack of helping the little +guy with it. + +## The case of Matrix +I love [Matrix](https://matrix.org/) - I would love to contribute to the +wider ecosystem of it with my homeserver, but I've always had to shut +down requests of people wanting to register an account in my homeserver +if I do not know them. + +The annoyance comes from the fact that Element **[only covers their own asses.](https://matrix.org/legal/privacy-notice)** +I would love to add a privacy notice and easy methods to remove all user +data whatsoever. I would love to open registrations for many services. +However, I wouldn't like to get a GDPR fine for being in violation of the +law. You cannot easily readapt the privacy notice for Synapse and Element. +They're written on a scale of a business - the only templates in repositories +are ones for Element themselves. I have tried rewriting one of their GDPR +and privacy notices to no avail - it's full of legalese jargon that is hard +to read for a normal person. + +## Okay? Matrix has a deactivate button. +That isn't GDPR compliant still. It doesn't fully erase all of your data. +It only wipes your profile data, which can still be retrieved from the +channels that the user was partaken in. Not only that, but you cannot remove +data from other homeservers - this is a huge red flag in data sharing. + +## What about this other service you're hosting? +There is even less of a legal notice put up for those. If you find a reasonable +legal notice anywhere that can be adapted by an individual, not a business, +please let me know. + + + +**TL;DR** - GDPR non-compliance if I would enable. No safety net either by +the bigger projects, only to cover businesses. Smaller projects tend +to not even have any documents in first place. + + +Thanks for reading +- Cernodile + +;tags:rant gdpr privacy site future +;description:If you've used any of my services, you have more than likely have had to use it as a guest rather than a registered user. There's one simple reason why I can't allow you to. GDPR... and lack of helping the little guy with it. + diff --git a/templates/index_header.html b/templates/index_header.html index 13cf453..6dca8a7 100644 --- a/templates/index_header.html +++ b/templates/index_header.html @@ -14,6 +14,6 @@ < Last-Modified: Doesn't need to be modified, is perfect as-is.
< Connection: keep-alive

based

-

Quick-links to services I host: Invidious, Searx, Piped.

+

Quick-links to services I host: PeerTube, Searx, Piped.

Hall of Based: ReactOS, Matrix, PostmarketOS, Pine64, Landchad.net

Personal Blog of Cernodile