A few days ago I sent a GDPR request to some company to delete my personal data. They said to install their app and send a ticket from the app. The email was sent from the email address to which the account is registered. Is this even legal?

  • My Password Is 1234@lemmy.worldOP
    link
    fedilink
    arrow-up
    1
    ·
    edit-2
    1 year ago

    For now, I do not want to announce the name of this company publicly.

    If they don’t want to solve it amicably, then I will do so.

    • sanpo@sopuli.xyz
      link
      fedilink
      arrow-up
      3
      ·
      1 year ago

      They already said they don’t want to.

      They asked you to install the app on purpose, in hopes that you’ll decide it’s too much hassle and decide not to delete the account.

      • el_abuelo@lemmy.ml
        link
        fedilink
        arrow-up
        0
        ·
        1 year ago

        How do you know this?

        My first thought was “they probably want to ensure they are who they say they are and so want an authenticated request” - while that’s against GDPR, not everyone is as educated as they should be, and not every mistake is a nefarious activity.

        • sanpo@sopuli.xyz
          link
          fedilink
          arrow-up
          1
          ·
          1 year ago

          There’s no reason an app should be more trustworthy than the email.
          It’s pretty standard for scummy companies to make the process as annoying as possible.

      • Scubus@sh.itjust.works
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        Think of the poor corporation! If they get punished for their illegal buisness practices, it’ll hurt the economy and people will be less inclined to start a small buisness. Didn’t you study piss down economics?