GDPR friends, has anyone written a guide to running a compliant Mastodon instance? I reckon it's probably relatively easy, but it would help people thinking about setting up. See discussion between @wblau and @blaine below.

mastodon.social/@wblau/1093314

Suivre

@robin @wblau @blaine Hello,
I recently wrote a registry of processing activites for Mastodon, it's available here : sciences.re/ropa/

Please note that being « compliant » depends of your country, because GDPR has exceptions for legal obligations that depend on the country

@robin @wblau @blaine By no mean it's full enough / good enough, and i'll keep working on it (especially with the upcoming migration to 4.0*), but it's a start.

For the record, here is an example of such a ROPA, unfortunately it's only available in French : cnil.fr/sites/default/files/at

@blaine @wblau @RGrunblatt @robin Amazing!

I’m not qualified to judge this in detail, but it looks very thorough. In practice, this structure shouldn’t take an instance owner too long to fill in.

Conceivably there could even be ready-made text blocks for widely used hosters (eg. Hetzner) and contract types.

Inscrivez-vous pour prendre part à la conversation
Mastodon -- Sciences.Re

Sciences.Re souhaite offrir un espace de partage, de collaboration et de discussion en ligne pour la communauté scientifique, académique, éducative francophone. Elle est sans coloration thématique: nous accueillions les sciences exactes et expérimentales, les sciences humaines et sociales, …