Hacker News new | ask | show | jobs
by toofy 988 days ago
if they’re hosting sensitive data, it isn’t “babying” the user to take some responsibility for the data your company exists on.

if they can’t take responsibility for it, then they’re too irresponsible to make money it.

it would be entirely reasonable for them to say “we don’t want anything to do with this data, we don’t want to profit from it, we don’t want to use it in anyway, therefor we will not retain it at all.”

babying the user by taking responsibility for the very data they profit from? unreal.
1 comments
ipaddr 988 days ago
Checkout the data in the screenshot. This is not sensitive data. Pretty useful data.
link
toofy 988 days ago
> The information that has been exposed from this incident includes full names, usernames, profile photos, sex, date of birth, genetic ancestry results, and geographical location.

i would absolutely argue that having my

1) genetic ancestry,

2) full name,

3) date of birth,

etc… is sensitive information.

even removing genetic information, if a company is too irresponsible to catch millions of users info being stolen, then they’re too irresponsible to have that data.

again, either it’s important to your business or it isn’t. if it isn’t important, then refuse to store it.

link
ipaddr 987 days ago
Birthdate/name is not sensitive data nor is a public profile photo. Facebook will display this in a public profile. And you are not getting genetic data. This info is public in other dna sites even if it's private on 23andme
link