The way category moderators are set-up, is not intended to have global permissions to remove forums accounts (which will affect other categories), also itâs not technically possible without making people global moderators (and we have +120 category mods at the moment).
Whatâs the problem you are trying to solve here? Admins have already processed requests for forum account deletions and also performed deletions to spam accounts.
Complains coming from some users were around not deleting their account right away, and instead being deleted on Monday morning when an admin was online. @forums-governance is discussing how to be able to have better admin response to urgent issues (maybe more admins in different timezones), but in my opinion an account deletion request can perfectly wait until Monday morning if needed.
I agree and will comment there after some more research.
I just wanted to respond to the users and find a solution, which had complained about it here recently. Originally I didnât want to make it as big as it is now, but Iâm wondering myself that the software here is probably not able to delete the own account by means of a few clicks.
From a technical point of view, this shouldnât be a problem, so Iâm trying to figure out why this isnât possible in Discourse. Maybe there are really good reasons for this, but I donât see them yet.
To get the thread back here: yes I agree in principle. But to make the platform more user-friendly and to learn from what happened, the plugin linked at the very beginning could possibly help to clarify the process that runs in the background. If I as a user am informed in written form that the deletion of my account will take at least X days, then I can do more with it than if I get no feedback at all and after X hours the account is still there.
I agree with this as well. Nevertheless, I think it would help a lot if there was a short informative description about the timing and process.
Thanks for all the comments and thoughts. I appreciate it very much.
Based on my current understanding from the follow-up discussion in the Discourse forum, I would currently suggest the introduction of the Deletion Request plugin as preferred.
From my perspective, this would be a first step, regardless of what else Discourse offers in the future.
In the opinion of the data protection authority, the removal of the personal reference (âanonymisationâ) of the personal data can in principle be a possible means for erasure according Article 4 number 2 in conjunction with Art. 17 (1) GDPR. This means that the data doesnât need to be destructed.
In my current example, by deleting my OSM account, the forum user still remains without change. I still have the tab open and could continue to write here with the actual deleted OSM user. According to the law, the user account does not have to be completely deleted, but at least anonymized, which it currently is not.
See posting here, the original name is still visible: Enable easy deletion of the entire account by the user himself - #11 by osmtestfordiscourse2
But I like to go one step further here. Weâve already had the request from several users that they wanted to delete their account âquickly and easilyâ.
The user story would be: As a Discourse user, I want to delete my account quickly and easily and get immediate positive feedback for that action.
The question remains: What are the arguments against adding a button that does just that, even if itâs not legally necessary.
Users can also report, like, bookmark, share posts here. Even though itâs not legally required. So there is also functionality here that makes it easier for a user to use the software, even though this is not required by law. So why not also delete your own account via button?
Note that the reality is that you have two accounts in two places, one for the OSM site and one for the forums, a deletion request in one of them is not creating a request on the other one.
About the plugin, as @Tordanik said, weâll discuss in our next @forums-governance meeting and see if there are any technical issues to have it installed.
To be fair, the Discourse developers havenât ârefused to implement a delete functionâ, but rather said what would need to happen (for reasons including GDPR) in such a case. Their full reply (which you linked to) makes some very good points, including that only the admins understand the SSO links involved in any implementation and any request therefore needs to be handled by actual admins, not a local-only automatic deletion.