TL;DR: How can one make use of the GDPR rights in this forum?
I’ve tried to find a way to download all my data in the account page, but sadly with no luck. The only option I’ve found was in
profile -> activity -> Download All which downloads all posts. But this obviously is far from all the information related to my account (in particular it contains close to 0 metadata which is shown in the summary tab).
Similarly there seems to be no “Delete Account” button. While I didn’t intend to do that, it is good practice imo to have one.
On a different note, I am highly averse to the statistics kept by discourse (e.g. shown here http://forum.solidproject.org/u). While some people apparently find it useful, there should definitely be an easy way to opt-out of them (which, again, I didn’t find). I personally don’t see value in them at all, so I would suggest to disable them if possible, but providing a way to individually disable them seems essential to me.
I don’t know how easy it is with discourse to directly embed the Right of Access and Right to Erasure. I think it will be possible to do this (considering the scale of discourse), but if not it should be made clear where else one can make use of these rights.