Lissy93
commented
2 years ago Are you currently, or have previously been affiliated with this project, in any way?
Closed yoavaviram closed 2 years ago
Lissy93
commented
2 years ago Are you currently, or have previously been affiliated with this project, in any way?
yoavaviram
commented
2 years ago Yes, i am one of the founders.
Lissy93
commented
2 years ago Okay, thanks for the transparency. Next time, if you could mention this in your PR that'd be good.
We have got justdeleteme.xyz on the list already, which I think does a similar thing. But seems to be a bit clearer to use - It just gives you the info you need, difficulty level and email address, without the need to fill in forms and open a link in your mail client.
But the FAQ on the homepage is really good, clear and to the point. The templates also look good.
I'm always a bit weary of the value of these services, since from what I've seen, often most companies just ignore these emails. But from a privacy perspective, you're basically reaching out to to them saying "Hey, I'm a human, and here's a valid email address", which can be pretty valuable to them. And if you use any kind of email aliasing, then you'll likely trip up here, and end up revealing your real email. I think it was a recent episode
With this service specifically, the follow up feature of this service involves you sharing your email with them (via CC'ing them into your request). Which looks to be hosted on AWS, and from what I can see, in plain text.
Just from the homepage, looks like there's some tracking going on, but not totally clear what. It's definitely at least keeping count of number of emails sent to each provider, as indicated in https://yourdigitalrights.org/api/companies, but haven't looked into what else. There's also centrally hosted Matomo, Google CDN, etc
And what is with the https://yourdigitalrights.org/api/geolocation request it makes on page load?
Explain why it should be added
YourDigitalRights.org is a free and open source service which helps people regain control of their online privacy by automating the process of sending data deletion requests to organizations, and then provides guidance on how to ensure that requests are resolved in their favor.
Additional Context
The service automates the process of sending GDPR / CCPA / LGDP data deletion and access requests. It is free, open source, privacy respecting and is run by a registered charitable organization. I think it should go under the Security Tools -> Online Tools category.
Content (optional)
YourDigitalRights.org is a free and open source service which helps people regain control of their online privacy by automating the process of sending data deletion requests to organizations, and then provides guidance on how to ensure that requests are resolved in their favor.
NOTES: