Boards.ie uses cookies. By continuing to browse this site you are agreeing to our use of cookies. Click here to find out more x
Post Reply  
 
 
Thread Tools Search this Thread
11-05-2018, 12:19   #1
 
Join Date: Apr 2008
Posts: 13
GDPR and Boards.ie post removal policy **update linked in OP 24/5/18**

This post has been deleted.

Re-instated update 29/07/18
Quote:
Originally Posted by Boards.ie: Sean View Post
Given that GDPR comes into effect on 25 May we wanted to give you a quick update on how this will impact Boards and our community and what changes we are making to the site and our procedures and processes in order to be compliant with the new regulations.

Policies

We are currently updating our Terms of Use, Privacy Notice and Cookies Policy in light of GDPR. There are some final clarifications that we are awaiting feedback on from our lawyers but we expect the updated policies to be live on the site on 25 May.

Personal Data

Boards processes personal data of its registered users. This applies to anyone who has a Boards account (that has not subsequently been closed). Boards does not process personal data for people who visit the site and have not registered for a Boards account.

Data Access Requests

Under GDPR users have the right to request access to any of their personal data that is held by Boards. In order for Boards to process a data access request from a registered user of the site we need to verify the identity of the person making the request. Therefore, the process for requesting your personal data is as follows:
  • For identity verification purposes the data access request must be sent via a Private Message (PM) to the following recipient Boards.ie: GDPR (if for any reason you are unable to access or send a PM please email datarequests@boards.ie and we will get back to you with further instructions).
  • Data access requests will only be processed for the user account from which the PM was sent. We will not process data access requests for personal data related to 3rd party accounts
  • Once processed, an encrypted zip file containing the personal data will be sent to the email address associated with the user account
  • The password required to decrypt the zip file will separately be PM’d to the user making the data access request
  • If for any reason you cannot log onto to your Boards account you should follow the standard password reset procedures

We will begin processing data access requests from 25 May onwards and will respond with 30 days.

Account Closure / Erasure of Personal Data

Users have the option to close their Boards account. This option is available in User Control Panel / User Settings. If this option is selected all personal data will be permanently deleted. Your Boards username will be retained but this will not be associated with any other information relating to an identified or identifiable natural person and therefore will no longer be considered personal data.

In specific instances where a person could reasonably or easily be identified from their Boards username we will consider requests to change the username; these will be dealt with on a case-by-case basis.

Should you wish that all your personal data be erased from Boards systems you should choose to close your Boards account.

Inactive Accounts

Under the GDPR principle of not retaining personal data longer than is required we intend to email all inactive users (users who have not logged onto Boards for 6 years or more) to see if they still want to remain a member of Boards. Inactive users will have 30 days to log onto the site. If they do so within the 30 days we will remove them from the inactive user list. If they do not we will assume that they no longer wish to retain their Boards account and we will begin the process of closing their accounts.

User Posts

For users with an active Boards account, posts made by a user can be associated with other information held by Boards that relates to an identified or identifiable natural person (for example a post can be associated with a user’s email address and/or real name). Therefore, posts made by a user with an active Boards account are considered personal data and GDPR regulations apply to these posts, including the right of erasure. As such, from 25 May we will begin to process requests for erasure of posts from users with an active Boards account. These requests must be sent via a Private Message (PM) to the following recipient Boards.ie: GDPR (if for any reason you are unable to access or send a PM please email datarequests@boards.ie and we will get back to you with further instructions).

For closed accounts all personal data (other than users’ posts) will be deleted. Therefore, posts made by users whose accounts were subsequently closed cannot be associated with other information held by Boards that relates to an identified or identifiable natural person and as such are not considered personal data and GDPR does not apply to this data.

In specific instances where the content of a post contains sensitive data or data that could be used to identify an individual we will consider requests to edit or delete the post; these will be dealt with on a case-by-case basis.

Last edited by Beasty; 29-07-2018 at 23:15. Reason: mod note added
Permabear is offline  
(3) thanks from:
Advertisement
11-05-2018, 12:52   #2
Beasty
Administrator
 
Beasty's Avatar
 
Join Date: May 2009
Posts: 34,273
It applies to personal data. We've taken down personal info on request and will, I am sure, continue to do so

Most users take advantage of the anonymity that boards affords them, and there are few instances of personal data being posted.

To be clear though, these are my personal observations, and I'm sure someone from the office will be along to clarify if I have got anything wrong
Beasty is offline  
Thanks from:
11-05-2018, 12:55   #3
 
Join Date: Dec 2016
Posts: 8,933
This post has been deleted.
....... is offline  
11-05-2018, 12:57   #4
dudara
Administrator
 
dudara's Avatar
I'll defer to HQ for a formal answer to this. I'll make sure they see this question
dudara is offline  
(5) thanks from:
11-05-2018, 12:59   #5
 
Join Date: Dec 2016
Posts: 8,933
This post has been deleted.
....... is offline  
Advertisement
11-05-2018, 13:00   #6
Beasty
Administrator
 
Beasty's Avatar
 
Join Date: May 2009
Posts: 34,273
Quote:
Originally Posted by ....... View Post
This post has been deleted.
I thought the "close account" option dealt with that
Beasty is offline  
(2) thanks from:
11-05-2018, 13:05   #7
 
Join Date: Apr 2008
Posts: 13
This post has been deleted.

Last edited by Permabear; 11-05-2018 at 13:12.
Permabear is offline  
Thanks from:
11-05-2018, 13:28   #8
 
Join Date: Dec 2016
Posts: 8,933
This post has been deleted.
....... is offline  
11-05-2018, 13:43   #9
 
Join Date: Apr 2008
Posts: 13
This post has been deleted.
Permabear is offline  
Advertisement
11-05-2018, 15:19   #10
 
Join Date: Jan 2018
Posts: 6,880
Quote:
Originally Posted by Beasty View Post
I thought the "close account" option dealt with that
Definitely not. I’ve just complained about a ban from a forum because I had never been infracted before in this account to be told that it was because of other accounts. Going back years. Since I’ve moved house and changed isp in that time I wonder what the tracking is. Closing doesn’t delete much.

What’s the mechanism for getting data deleted? I don’t care about posts but other data that may be stored.
Franz Von Peppercorn is offline  
Thanks from:
11-05-2018, 15:31   #11
dudara
Administrator
 
dudara's Avatar
A small update - HQ are actively working on GDPR matters at the moment and will post an update once some open questions have been addressed.
dudara is offline  
11-05-2018, 15:38   #12
 
Join Date: Jan 2018
Posts: 6,880
Quote:
Originally Posted by Permabear View Post
This post had been deleted.

If there’s no links between Permabear and your real name or any email address, or anything else thats identifying, i would think it should be ok. FB is a real name platform. Google has to remove searches on real names but I doubt that a search for Permabear could be removed unless a breach tying your real name to PB was already in the wild. Will take some court cases to sort out the grey areas maybe.

Last edited by Boards.ie: Mark; 31-07-2018 at 11:13.
Franz Von Peppercorn is offline  
Thanks from:
11-05-2018, 15:45   #13
Beasty
Administrator
 
Beasty's Avatar
 
Join Date: May 2009
Posts: 34,273
Quote:
Originally Posted by Franz Von Peppercorn View Post
Will take some court cases to sort out the grey areas maybe.
Agree on this, but it does make things difficult as we adopt a better safe than sorry approach (an approach that anyone underwriting the site's exposure to legal claims will presumably require adhering to)
Beasty is offline  
11-05-2018, 15:46   #14
 
Join Date: Dec 2016
Posts: 8,933
This post has been deleted.
....... is offline  
11-05-2018, 15:55   #15
 
Join Date: Jan 2018
Posts: 6,880
^

Agreed in general. Which is why I am questioning my previous accounts being brought up in an infraction. That should go.

But if permabear after closing was not linked to any email address, ip, previous accounts if any, then the pseudonym itself isn’t a breach of privacy. I would think.
Franz Von Peppercorn is offline  
Post Reply

Quick Reply
Message:
Remove Text Formatting
Bold
Italic
Underline

Insert Image
Wrap [QUOTE] tags around selected text
 
Decrease Size
Increase Size
Please sign up or log in to join the discussion

Thread Tools Search this Thread
Search this Thread:

Advanced Search



Share Tweet