GDPR doesn’t include things you choose to make public, otherwise no social media could show your posts or username to anyone. My only doubt about Lemmy and Mastodon is about DMs where people have a reasonable expectation that they are private but they are not.
Edit: and thinking about it, even DMs probably fall into the same exception as email.
That is wrong. GDPR of course covers public information. It simply does not force platforms to hide this kind of information. But transmission of these informations without user’s consent and especially sale of these informations could possibly be prohibited by a court referencing GDPR.
But simply transmitting it for the purposes of making the protocol work, falls under legimitate purposes, like sending an email to email server in China
GDPR doesn’t include things you choose to make public, otherwise no social media could show your posts or username to anyone. My only doubt about Lemmy and Mastodon is about DMs where people have a reasonable expectation that they are private but they are not.
Edit: and thinking about it, even DMs probably fall into the same exception as email.
That is wrong. GDPR of course covers public information. It simply does not force platforms to hide this kind of information. But transmission of these informations without user’s consent and especially sale of these informations could possibly be prohibited by a court referencing GDPR.
But simply transmitting it for the purposes of making the protocol work, falls under legimitate purposes, like sending an email to email server in China
Absolutely.
But if a fedi software/instance decided to do something else with this public data, it could get legally problematic. That is the point I’m making.