239
submitted 3 months ago* (last edited 3 months ago) by cosmicrookie@lemmy.world to c/mildlyinfuriating@lemmy.world

I asked this company to close and delete my account, and they replied that they have closed it. They use a type of ticket system where you need to log in to their site to see replies.

I wanted to reply, to ask if they also have deleted my data, instead of just closing the account. In order to contact them, they will create a new account SMH

you are viewing a single comment's thread
view the rest of the comments
[-] cosmicrookie@lemmy.world 31 points 3 months ago

Yes. This is why i am in touch with them. But every time i need to reply, to make sure that they comply, they create a new account.

[-] Terces@lemmy.world 42 points 3 months ago

They have to list their legal contact. Write them an e-mail there and quote the GDPR. Request a confirmation.

[-] cosmicrookie@lemmy.world 21 points 3 months ago

I've done that a few times yeah with other cases. This is just the first time that i see someone create an account just for contacting them

[-] Rosoe@fedia.io 15 points 3 months ago

Aye it's ass. Even the temp mail idea is flawed because at some point you need to confirm your identity/ownership of the account.

I did a huge GDPR cleanup of various accounts I owned based on what I had and wanted gone from my password manager at the time. A mix of:

  • Please fill out this pdf with all your details of all the information you want deleted. If we can't find the data base don that form then it's on you. (Unnecessary amount of work. Solution, report to national GDPR Rep for obfuscation.)
  • Non-response from any active email. (Illegal for companies with operation sin the EU. Report to national GDPR rep for non0compliance.)
  • Did not respond for 30 days (Illegal for companies with operation sin the EU. Report to national GDPR rep for non0compliance.)
  • Asked for an extension to 60 days (Only possible in certain extreme circumstances that they need to prove to you. Report to national GDPR rep.)
  • Asked for copy of passport to confirm identity. (Unnecessary if emailing from the email they have on file. Tell them this. If they don't delete/ignore report them to national GDPR rep.)
  • Self-service deletion does not work and customer service will only refer you to that self-service. (Report to national GDPR rep.)

And probably more I don't remember. Maybe 30% of companies I reached out to actually just deleted it and confirmed as such within 30 days. If you're doing similar then you've got to get good at reporting people to strong arm them, especially if they just no respond after 30 days. Gotta proactively stay on top of that.

[-] cosmicrookie@lemmy.world 1 points 3 months ago

When they reply that they have deleted the account, do you assume that they also delete any information that they have stored or that they simply close it and keep the information?

Personally i want them to delete my email name and other information so that it is not at all in their systems.

The problem here is, that I can't write and check, without them creating a new account for that email

[-] EddoWagt@feddit.nl 2 points 3 months ago

By the fact that they require an account to contact them, I'm going to assume they keep your data unless explicitly asked to delete it

[-] Rosoe@fedia.io 1 points 3 months ago

So I don't know the company you're contacting but this should help: part of GDPR legislation is that you can contact and live email the company has and make your legally mandated demands that your data be deleted under GDPR. If they ask that you create an account to submit a request then you can claim this is unnecessary and obfuscatory to the purpose of deleting account details.

Make sure you tell them they have 30 days. Make sure you ask for all data related to your email, name, identity, phone numbers, whatever.... to be deleted. Quote the parts of GDPR legislation that are relevant to this (it's actually quite short so worth a read), and send them a link to the national authority you will report them through if they don't provide a satisfactory resolution in 30 days.

I did this for Hermes, an atrocious courier company in the UK who I hadn't used for anything for about 7 years. I got bounced around but eventually got a direct email to their data handlers. They demanded I give them a passport to prove my identity. I told them that the email I'm messaging from is more than enough for them to confirm. No response for 20 days (the timer was ticking from when I first emailed anyone at their company with the request) then they deleted my information right before the deadline and confirmed it with me.

Bastards, but if you're committed to reporting them then that seems to be good enough leverage for many crappy companies.

this post was submitted on 07 Sep 2024
239 points (98.8% liked)

Mildly Infuriating

35778 readers
511 users here now

Home to all things "Mildly Infuriating" Not infuriating, not enraging. Mildly Infuriating. All posts should reflect that.

I want my day mildly ruined, not completely ruined. Please remember to refrain from reposting old content. If you post a post from reddit it is good practice to include a link and credit the OP. I'm not about stealing content!

It's just good to get something in this website for casual viewing whilst refreshing original content is added overtime.


Rules:

1. Be Respectful


Refrain from using harmful language pertaining to a protected characteristic: e.g. race, gender, sexuality, disability or religion.

Refrain from being argumentative when responding or commenting to posts/replies. Personal attacks are not welcome here.

...


2. No Illegal Content


Content that violates the law. Any post/comment found to be in breach of common law will be removed and given to the authorities if required.

That means: -No promoting violence/threats against any individuals

-No CSA content or Revenge Porn

-No sharing private/personal information (Doxxing)

...


3. No Spam


Posting the same post, no matter the intent is against the rules.

-If you have posted content, please refrain from re-posting said content within this community.

-Do not spam posts with intent to harass, annoy, bully, advertise, scam or harm this community.

-No posting Scams/Advertisements/Phishing Links/IP Grabbers

-No Bots, Bots will be banned from the community.

...


4. No Porn/ExplicitContent


-Do not post explicit content. Lemmy.World is not the instance for NSFW content.

-Do not post Gore or Shock Content.

...


5. No Enciting Harassment,Brigading, Doxxing or Witch Hunts


-Do not Brigade other Communities

-No calls to action against other communities/users within Lemmy or outside of Lemmy.

-No Witch Hunts against users/communities.

-No content that harasses members within or outside of the community.

...


6. NSFW should be behind NSFW tags.


-Content that is NSFW should be behind NSFW tags.

-Content that might be distressing should be kept behind NSFW tags.

...


7. Content should match the theme of this community.


-Content should be Mildly infuriating.

-At this time we permit content that is infuriating until an infuriating community is made available.

...


8. Reposting of Reddit content is permitted, try to credit the OC.


-Please consider crediting the OC when reposting content. A name of the user or a link to the original post is sufficient.

...

...


Also check out:

Partnered Communities:

1.Lemmy Review

2.Lemmy Be Wholesome

3.Lemmy Shitpost

4.No Stupid Questions

5.You Should Know

6.Credible Defense


Reach out to LillianVS for inclusion on the sidebar.

All communities included on the sidebar are to be made in compliance with the instance rules.

founded 2 years ago
MODERATORS