On Fri, Jul 20, 2018 at 08:49 PM, Shal Farley wrote:
However, having a web form that the person can fill out when he/she requests membership is an often-requested feature, and one that Mark has wanted to do for a couple years now
This raises a potentially ugly point. As things stand Groups.io does not collect "personal information", which goes a long way to satisfying the requirements of the GDPR (see numerous other threads on this forum and beta!) However if Groups.io were to provide the means whereby it enabled group
Owners (and presumeably Moderators as well) to collect personal information (such as might be the case of the OP for this thread) then would Groups.io have any liability for the consequences if that personal information was in any way misused?
Corporately Groups.io might not collect and store the information but it would have created the means whereby group Owners did, with that storage being somewhere on, er, Groups.io. Within the caveat of "I am not a lawyer" would this make Groups.io vicariously liable for preventing the improper use of that information?
The group I moderate uses the Pending Subscription message to request details about "why do you want to join", but it does not request personal information which is then stored; once read the incoming responses are deleted as being of no further use.
I can see why some groups need to receive and store personal information; names, address, vetinary licence details and so on and so forth, but at the same time I can see problems with its implementation; The information would not be under the day to day control of Groups io, and yet at the same time it (Groups.io that is) might find itself having to be legally responsible if it provided the means of capturing and storing that information in the first place.
And no, I don't have a solution.
Chris
