Why exactly do you want to keep his information? As you've said, he's made no posts. You can keep the content of the posts, but you don't really have any legitimate reasons to keep his email, his IP, or any cookie data. These are all protected by the GDPR, and since you have no legitimate interests to keep them (presumably) which would outweigh his rights, you should delete them per his request.Seriously? That's what people do with these requests?? Hmmm... Tempting, but...
Or serving EU users.If your website is based in the EU then you don't have a choice.
I have set up an automatic reply to emails having this subject (since they are automatically generated) telling them to send me a PM requesting to have their account deleted as we don't know whether they are really the account holder or not.Hi, I received this unusual request from a member, who has no forum content, not one post.
What is the world is he asking, all we have for info on his account is:
- a made-up username
- an email address,
- he identifies as male,
- the DAW software he uses,
- he's in the UTC+1:00 time zone.
All other info would have been caught by a cookie, I suppose, in his browser, but that info doesn't come to us. Or does it?
Thanks for any help on this!
Hi, I received this unusual request from a member,
So currently, without accepting cookies: we havebut I haven't seen the way to add also the button to let the users deny the use of the cookies as many guests want.
Maybe that looks fine to you, but I can assure you that this way of thinking does not comply at all with the laws of some European countries. I'm talking especially about Germany, where I live, and I have to adapt my websites to the way the German law has interpreted the GDPR, not the way the GDPR is interpreted in Spain, for example.To me this seems fine, every site owner has this prerogative, but I can see why you may want people to still browse the site without thavingb their experience "tailored." However you reword the phrase it's still a kind of take it or leave approcah assuming people may want to look at the site without the tailoring and without the nagging notice at the bottom of the screen.
Yes, that's the same that I think, but again, that does not work for Germany and many other European countries. You may provide a cookie banner, that if the user does not consent to, disallows the navigation through the site. But as said, this banner has to activelly prevent the navigation on the site if the user does not consent to cookies (modal dialog with black overlay). And of course, as long as the user has not consented to, you can not load third-party scripts.Which implies if you don't want to have cookies, we don't want you looking at our site.
That is not entirely correct and extremely vague. At least in xenforo, there is no content that depends on the acceptance of the cookie banner. You can log in or register because the cookies used for that are functional cookies.They may continue browsing without clicking on Accept.
In that case some content won't be available for them.
AlmostPS: I'm not saying that I agree with this way of interpreting the GDPR law, and the GDPR law itself. But this is the way it works, at least in Germany.
No it doesn'tMaybe that looks fine to you,
I thought I was agreeing with you!but I can assure you that this way of thinking does not comply at all with the laws of some European countries. I'm talking especially about Germany, where I live, and I have to adapt my websites to the way the German law has interpreted the GDPR, not the way the GDPR is interpreted in Spain, for example.
That way the user has the option whether or not to proceed with registration to gain access to the site knowing that cookies are and will be in use.
Just because you have a website does not mean it has to be made accessible to all in the public domain.
No, it is not correct.yes, that is correct
You can't force users to accept data processing that is not necessary.Make the site 'Members only' and as part of the membership application (registration) it is accepted that cookies are used.
What if you moved your server out of the EU or changed to a server located outside of the EU, are you still subject to EU law?Where do you draw the line as a website owner?
To all intents and purposes reading some of these comments you're pulling your pants down and waiting for the inevitable.
Operating a website should give you as much pleasure as it does the users. When it stops doing so and instead becomes a chore treading on egg shells, its time to pull the plug.
I would think so, if it can be proven that the operator/owner is based in a place where the courts and laws are. But I am not a lawyer.What if you moved your server out of the EU or changed to a server located outside of the EU, are you still subject to EU law?