Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
jfengel 8 hours ago

"Privacy policy: we don't collect or retain any data at all ever period."

You don't keep server logs? Cool and all, but it sounds like you'll have a hard time debugging if something ever goes wonky.

cardanome 7 hours ago | parent | next [-]

If your server logs contain personal information then you are doing something horribly wrong and I hope you don't operate in the EU.

Don't log sensitive data. You don't need that for debugging.

lq9AJ8yrfs 6 hours ago | parent [-]

But this is the same problem!

The GDPR and such define PII so broadly that more or less everything in web server logs is included in the definition.

Not sensitive PII, but still PII that the individual has rights and interests over.

That is more or less on purpose, and they do have a point.

Rogue debugging on the other hand is not what they are worried about vs using the data in web logs for targeting, profiling, etc.

If you could sell your web logs, would you? Vs how much would someone pay reddit or github for theirs? And would you be ok with that if your browse history was in there?

robin_reala 5 hours ago | parent [-]

To be clear, the GDPR never uses the term Personally Identifying Information. It uses PD or Personal Data: this can be identifying on its own, but it’s more likely that some aggregate of multiple pieces of PD become identifying only when taken together.

ikiris 7 hours ago | parent | prev [-]

that's probably translated to the following is the problem: "Privacy policy: we're just gonna lie about it because our lawyers don't think there's consequences"

lgas 6 hours ago | parent [-]

Or "we're just gonna lie about it because we don't think there's consequences so we didn't even ask our lawyers".