undefined | Better HN

0 points4ndrewl8y ago0 comments

Not true.

0 comments

6 comments · 2 top-level

dan-08y ago· 2 in thread

> Not true.

... unless you plan to use the backups.

Then you have to have another service that tracks entities to delete when a backup it's restored... and back that up separately.

drtillberg8y ago

If you back up a list of things to delete is that GDPR compliant? Ponder.

dan-08y ago

> If you back up a list of things to delete is that GDPR compliant? Ponder.

There's little to ponder, that's why I mentioned "entities" rather than "user data." Use unique keys to reference the data rather than sensitive identifiers. The nontrivial part is storing your backup of entities to be deleted in a way that doesn't get destroyed at the same time as the event that forces you to revert to a backup. This now requires a separate storage, backup, and retrieval mechanism to maintain compliance.

1 more reply

mc328y ago· 2 in thread

Has that interpretation changed? I recall reading that in some circumstances it could. Or was that misinformation?

Silhouette8y ago

No-one actually knows. What constitutes erasure and how to deal with all the edge cases around backups, archives, unstructured data and so on is one of the big ambiguities under GDPR, and one of the areas most in need of (but mostly lacking) actionable guidance from official sources.

pkaye8y ago

I'm surprised with the law being around for 2 years nobody has received the official guidance needed.

1 more reply

j / k navigate · click thread line to collapse

0 comments

6 comments · 2 top-level

dan-08y ago· 2 in thread

> Not true.

... unless you plan to use the backups.

Then you have to have another service that tracks entities to delete when a backup it's restored... and back that up separately.

drtillberg8y ago

If you back up a list of things to delete is that GDPR compliant? Ponder.

dan-08y ago

> If you back up a list of things to delete is that GDPR compliant? Ponder.

There's little to ponder, that's why I mentioned "entities" rather than "user data." Use unique keys to reference the data rather than sensitive identifiers. The nontrivial part is storing your backup of entities to be deleted in a way that doesn't get destroyed at the same time as the event that forces you to revert to a backup. This now requires a separate storage, backup, and retrieval mechanism to maintain compliance.

1 more reply

mc328y ago· 2 in thread

Has that interpretation changed? I recall reading that in some circumstances it could. Or was that misinformation?

Silhouette8y ago

No-one actually knows. What constitutes erasure and how to deal with all the edge cases around backups, archives, unstructured data and so on is one of the big ambiguities under GDPR, and one of the areas most in need of (but mostly lacking) actionable guidance from official sources.

pkaye8y ago

I'm surprised with the law being around for 2 years nobody has received the official guidance needed.

1 more reply

j / k navigate · click thread line to collapse