I'm not even aware that we'd be subject to GPDR.
We already allow removal of personal information in some cases (outing by others, accidentally revealing one's IP address, etc.). If we were going to allow it in any case that doesn't happen today, that would need to be agreed to by the community, in which case the best thing to do would be an on-wiki RfC.
Todd
On Sun, May 27, 2018 at 3:32 PM, David Gerard dgerard@gmail.com wrote:
I'm a big fan of the GDPR and why it had to be created. (I'm doing a lot of the bureaucratic work on the tech side at the day job and am getting very used to thinking of ways something could constitute Personally Identifying Information.)
But I'm wondering how we'll approach it for the Wikimedia sites. Not just the log data - but the content.
We already have problems with Right To Be Forgotten, and well-cited content being removed from the search engines.
What do we have in place to deal with this when - not if - we get GDPR requests to remove information about a person from the site?
I don't mean just the letter of the law, in the EU or the US - I mean also, how we can handle this *right*. Because there are multiple competing legitimate interests here, and the editing communities tend to take a lot more care than they're strictly required to by law, because we are here to get things right. (This is why our DMCA numbers are ridiculously low for a top 10 site, for example.)
Is anyone keeping track of what the communities are doing, as well as WMF itself?
- d.
Wikimedia-l mailing list, guidelines at: https://meta.wikimedia.org/ wiki/Mailing_lists/Guidelines and https://meta.wikimedia.org/ wiki/Wikimedia-l New messages to: Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l, mailto:wikimedia-l-request@lists.wikimedia.org?subject=unsubscribe