|
|
|
|
|
|
by leobg
1600 days ago
|
|
|
There’s also the right to be forgotten. How can they ban you if they have to delete all information that can be used to identify you? Even hashes of your email address or payment data should be something you should be able to request they must delete. |
|
|
If a person revokes consent for their personal data to be used, the data must be deleted if "there is no other legal ground for the processing". But if a data processor has an overriding "legitimate interest" in storing data about you, then they have legal grounds to do so without your consent. The details of this will vary depending on the situation (and the jurisdiction) but, for example, fraud prevention is explicitly called out as a legitimate interest.
https://law.stackexchange.com/questions/37882/google-adwords...