I’d be really keen to host a lemmy instance but just wondering with GDPR and everything, if there is anything else to consider outside of the technical setup and provisioning of hardware?
Lemmy is storing users data so is there any requirement to do anything GDPR wise?
Hope this is the right place for this - But seen a lot of posts interested in hosting their own lemmy instance, and this is an extension of that
Interesting - I had the feeling this was how the federation mechanism worked, I don’t see how it could work without sacrificing privacy.
So a “bad” actor could just spin up their own instance, federate with a huge amount of other instances (I don’t think other instances have a say in this, except if they explicitly, manually blacklist the “bad” instance?), and start profiling users based on their votes.
The potential for global surveillance is enormous. But I can also see it being useful to detect and fight bot farms, spam, brigading and other bad stuff that has plagued Reddit for quite some time.
Lemmy could do a better job at informing users that basically everything you do here is public (including votes). On Kbin the
/votes/up
page makes it clear at least (I like that even comments have a/votes/up
page).