Sorry, I have been up to my ears in FoP, so I haven't been able to analyze recently passed General Data Protection Regulation closely. Is there any estimation on the final version, to which extent might it influence the flow of request to Wikipedia about erasing personal data?
I mean, we are definitely in the business of gathering and sharing people's personal data in biographical articles (incl. exporting it to non-EU countries via Wikipedia), so - any new legal risks? Most comments only mention companies but I'm sure it also concerns NCOs as collateral damage (as usual).
I recall at least one case a couple of years ago when someone had contacted Estonian Data Protection Agency which sent WMEE a rather unofficial letter suggesting to comply. I pulled a half-Godwin on them (stating and demonstrating they're incompetent, though not publicly; probably should have, for educational value). Nothing followed. But I suspect this directive would acquire the same influence on such cases as full moon has in Arkham Asylum.
Raul