this post was submitted on 06 Mar 2024
307 points (89.1% liked)

Fediverse

28465 readers
551 users here now

A community to talk about the Fediverse and all it's related services using ActivityPub (Mastodon, Lemmy, KBin, etc).

If you wanted to get help with moderating your own community then head over to !moderators@lemmy.world!

Rules

Learn more at these websites: Join The Fediverse Wiki, Fediverse.info, Wikipedia Page, The Federation Info (Stats), FediDB (Stats), Sub Rehab (Reddit Migration), Search Lemmy

founded 1 year ago
MODERATORS
 

Highlighting the recent report of users and admins being unable to delete images, and how Trust & Safety tooling is currently lacking.

you are viewing a single comment's thread
view the rest of the comments
[–] SupraMario@lemmy.world 1 points 8 months ago (1 children)

https://www.ibm.com/topics/pii#:~:text=Personally%20identifiable%20information%20(PII)%20is,email%20address%20or%20phone%20number.

Usernames are not and never have been considered pii

The GDPR states it clearly that the company/entity has to be collecting pii or selling something to the person. Lemmy does neither of these.

[–] maynarkh@feddit.nl 2 points 8 months ago (1 children)

How is IBM authoritative on this subject? And even so, this article doesn't say that usernames are not PII, it even indirectly says it is indirect PII.

Here's another random company's page saying usernames are PII: https://www.keepersecurity.com/blog/2023/06/14/what-is-personally-identifiable-information-pii/

The GDPR says it clearly and explicitly that:

  • online identifiers such as usernames are PII
  • selling data or money transactions of any kind is not a requirement for the GDPR rules to apply
[–] SupraMario@lemmy.world 0 points 8 months ago (1 children)

Usernames that are used in an internal network are, because they're linked to pii, a public username is not pii.

[–] maynarkh@feddit.nl 2 points 8 months ago

And where did you read that? If anything, public usernames are easier to correlate to form identities.