Am I the only one who thinks this is absurd?
Discussion
Nope 🫡
Reading
Yeah as always, you’re incredibly kind to even reply. I stopped reading after they were seemingly talking to themselves for 2 paragraphs then made somewhat of a point? Idk. You answered what would be of aid and they didn’t do that. Bye to them 💞💞
I’m starting to think the whole issue was created with ChatGPT
We need a name for this… hmmm
😂😂😂
It’s not I promise!! 💞💞 I know you don’t like it 🥲
Finnnnneee tho. I’ve got my thinking cap on. What’s your first inspo for a name? Hmm. 🤔
Looks like a standard randos FOSS issue to me 😂
🤣🤣🤣🤣
Yeah pretty ridiculous.
I stopped at “literally personally identifiable … “ 😂
Silliness through and through.
The only way to truly support GDPR is to not store anything in the server. Or anything in the server is e2e encrypted so that only the end user can decrypt it. Even the server operator can't see the data. The content of kind 4 is a good example.
This is an open challenge for the whole industry and NOSTR actually has better chance to really support it in a technical perspective than traditional internet platforms.
My point is, to truly support GDPR, it's client's responsibility. We have to move away from cloud-first to local-first thinking.
Why would that be absurd?
Cause everything about a note is already public xD
While i get that-ish, it’s kinda only as public as the relays. For groups of private relays, the ‘public’ nature of the note is limited by availability within the relay-set, no?
There's no such thing as a private relay, only a secured relay. Someone will have access to the notes, and since any user/client can verify that you signed the note, any of those people or their clients can republish the note, and often do, to any relays they might want.
Ok, secured/private, choose your semantics. It’s less around the ability to, just like anyone could photocopy an invoice, but there are social and digital controls around ‘shoulds’ that are created per group collaborative processes. So, within the ‘secured’, the same question applies and the point of being able to send info between ‘secure’ locations is the point of being able to validate across ‘secure’ environments. So the question stands, regardless of your word choice.
The problem isn't that people shouldn't share the note with other relays, it's that they could and inevitably would. The note is self-authenticating, if it's valid, if it's Nostr. The server isn't the database of record, or anything. If it's read by someone other than you, it can be shared and instead of it being someone just claiming you said this, it would be as if you said it yourself, and all of Nostr would accept it as valid and authored by a public key.
Sure, that’s literally the start point for corporations to be able to validate documents cross-platforms without having to re-validate things like invoice signatures. Sure, the whole network would recognize it, but companies would then find social controls to try to keep that under lock - that part hasn’t changed, indeed. But it helps ensure DBAs didn’t mess with the data in the meantime.
It's like an email. You don't say anything in an email, you wouldn't want the whole company to see. Because emails get forwarded, cause thats how email works.
That’s fine and doesn’t change how a diverse set of applications could leverage the ability to sign/validate data and share the data cross-platform without the need to have users revalidate their work in each system.
Everything? Except for those behind paid relays 🤔 sounds like there are control features that can make them slightly less public
Totally absurd. Nostream is not in possession of any data that can be considered personal or private, it's literally the point of all the data that is sent to the nostream service, to be shared openly.
I don't live in California, but I wouldn't worry much, if I were.
I think the same. Nostr it is public and private messages are already encrypted. I think a simple disclaimer could be put at client side just saying that data entered it is public and have to be considered like that. Users are responsible by their own keys and no further else it is needed. No password , no emails, no statistic data it is sell or sent anyware but potentially everybody could
Your message is garnering a lot of interest.
Added to the https://member.cash/hot feed