Just do a GDPR request and get all the data they have on you for free. I’m pretty sure they would have to give you your photos as part of that.

▲

petcat 6 hours ago | parent | next [-]

Aren't they only required to delete the data on request? They don't have to actually provide it back to you

▲

flexagoon 6 hours ago | parent | next [-]

No, you can request your personal data as a part of GDPR (and most other privacy laws). That's why things like Google Takeout still exist.

▲

echoangle 6 hours ago | parent | prev | next [-]

They have to provide the data on request. I also think they aren’t allowed to delete any data they have when you request it before providing it (although you can of course also request deletion).

https://gdpr-info.eu/art-15-gdpr/

▲

Hnrobert42 6 hours ago | parent | prev [-]

IANAL.

Article 15 says you have the right to request the data and they must provide it to you.

Article 20 says you have the right to get your photos back in a machine readable format.

Sadly, this only applies to those in the EU. Americans can keep taking it, which makes sense as it's an American company that's giving it. Sigh.

▲

andiareso 6 hours ago | parent | next [-]

Minnesota and some other states have similar laws that basically mirror GDPR. States have forms you can get that you would submit to the company. I’ve done it for my Matterport data after they started making you pay to unarchive content (originally free)

▲

echoangle 6 hours ago | parent | prev [-]

Honestly I would just try doing a GDPR request and see what happens. They first have to find out if you’re from the EU, and they probably will err on the side of caution and just fulfill it.

▲

swiftcoder 6 hours ago | parent [-]

> They first have to find out if you’re from the EU

Technically, you don't have to be from the EU. You just need to be in the EU (which includes Americans who are just vacationing in the EU).

	▲	echoangle 6 hours ago \| parent [-]
		Actually when reading up more on it, it looks like you don’t have to be in the EU at all. If I understand it correctly, the GDPR applies to any company that does business in the EU and it doesn’t even matter where the data subject is located or which country they are a citizen in. So even if you’re from the US, you should be able to make a valid GDPR request.

▲

dawnerd 5 hours ago | parent | prev | next [-]

Could also say you’re a California resident and get your data too. They’ll probably just ignore or say no if they’re being that shady.

▲

lutr 6 hours ago | parent | prev | next [-]

Well... If I was smarter, I'd have definitely done that!

▲

hk__2 6 hours ago | parent | prev [-]

Are photos considered PII?

	▲	echoangle 6 hours ago \| parent \| next [-]
		Not in general, but depending on what’s on them maybe. A profile picture showing my face definitely is. But I’m also not sure that they only have to give you PII.
	▲	mananaysiempre 6 hours ago \| parent \| prev \| next [-]
		PII is a US-specific concept that has little relevance to the GDPR. So I wouldn’t say for sure that they have to give those photos to you but it wouldn’t be as simple as “not PII”.
	▲	6 hours ago \| parent \| prev \| next [-]
		[deleted]
	▲	GJim 6 hours ago \| parent \| prev \| next [-]
		Ummmm The GDPR also covers data portability, so preventing your data (not just personal data) from being held hostage. https://ico.org.uk/for-organisations/uk-gdpr-guidance-and-re...
	▲	datenwolf 6 hours ago \| parent \| prev [-]
		GDPR covers more than just PII.