[em3rgent0rdr]

Seems like it will be extremely difficult and expensive to guarantee all copies are deleted. Also, replication is necessary for caching and reliability. I worry about how such seemingly well-intentioned laws can have adverse unintended consequences.

[athenot]

Think of it in terms of infosec: in a similar way, one could complain that having to sanitize secrets from RAM is harmful to performance (why can't we cache the result of decryption)… Yes it's an overhead but at the end of the day, we build technology to serve human goals, not the other way around.

(To be pedantic, we build technology to serve business goals, which are fulfilled within the larger context of serving human goals. Laws like these are to prevent shortcuts that would serve business goals while at the same time be detrimental to human goals.)

[splouk]

If I ask Facebook to delete my data, it should be deleted. Why does caching or reliability have anything to do with that?

[dsp1234]

or reliability

If our company had to delete all customer data for a particular customer, then I would need to:

restore 6 months of database backups individually, remove the data, then run then take and store each backup again.

have 3 years worth of tape backups shipped back to us from our data protection company. Restore the databases off of them, delete the data, store them back on tape, and have them shipped back to the long term storage facility.

[estebank]

Backup users' data encrypted with a recovery key. Delete the key, presto, the users' data is no longer accesible.

[Spivak]

Would you be satisfied with, "this data will be deleted once the deletion filters though the caches and backups?"

[calcifer]

If "once" is a reasonable time (as defined by the regulation) then yes, I'd be satisfied.

[em3rgent0rdr]

but I doubt the average user will be comfortable with such an experience.

[calcifer]

I doubt the average user needs anything more than "as per EU regulations, your data will be deleted in X days" when they delete their account.

[em3rgent0rdr]

It is not just the deletion when closing your account. It is the keeping track of all the copies that have to be made during regular operation (including packets in temporary buffers, periodic backups, cached version, redundant copies to hedge against data loss) just incase one day the user decides to delete.

[closeparen]

If you have backups, you might unintentionally restore an EU citizen's data. Pretty sure it's a crime to make backups (of user data) under this law.