In Europe, it is now pretty complicated to deal with users’ data since the GDPR European law.
Does Solid help app developers to be GDPR compliant? And in which ways?
I am not a lawyer, so this is probably quite simplified:
If you are storing personal data, you have to be GDPR compliant, which can be quite complicated. So the best thing to do is not store personal data at all. With Solid, the Pod provider is holding the data. While you might need users consent to collect the data, you are at least not responsible for storing and securing them, so in my understanding relying on Solid helps a lot with that.
3 Likes
This is , as far as i can see, the best and most detailed analysis paper on how Solid and GDPR work.
Summary: There are significant legal issues and i it feels like the statement “Solid is not GDPR compliant” is true.
This was published in Feb 2023 and it would be great to know if there have been any more analysis - enhancements based on the conclusions of this paper.
2 Likes