What I hate about social media sites that all the data is kept, but I can't find anything I need. But the admins, or new owners can always comb through the data (cf. last share). Given that I can't find shit, I'd be better off if old data got deleted. Delete inactive accounts after 90 days. Delete Toots after 90 days. Delete media after 30 days. Data is a liability. Make it easy for people to export threads (share a thread as HTML mail attachment, or save as HTML page for example).
@kensanata Partly agree. The downloadable Twitter archive is quite neat, actually:
You basically get an entire website containing all your old tweets and retweets, ordered by month. It can be stored locally and includes decent search functionality. I use it quite often to search my > 10000 (!) old tweets.
I would love a similar feature here on Mastodon.
G+ offers a takeout (at least, although the formatting seems to change every other hour) and Mastodon offers a similar means via simple HTTP access. So I can grep my data. And it even allos me to grab your stream, which isn't possible on G+.
@edavies @stefanieschulte I don't think so. Perhaps it does. The first point is that data is still a liability. If the bad guys take over, all your secrets are revealed, basically. Data is a liability because we cannot predict the future. The second point is scale. Once I realized that my GMail Takeout was more than 2G of mail, I decided to archive the file and delete the data on the servers because I don't have the tools to work with the data offline. Better to delete it.
You do realize, @kensanata, that it's most likely that the data you /thought/ you deleted is inaccessible by you in the future but probably archived somewhere for posterity?
People seem to get angry with me when I say what's put online, anywhere, ever, is our permanent record, but companies are archiving & something deleted now probably has no effect on what was archived around the time you put it out there.
To me this means simply *never posting online* anything that I might later wish I hadn't put there. Since I usually don't know what that might be, and anything could be taken out of context, I decided to (almost always) just go ahead and put it out here & hope I won't be damned by the consequences. That being said, I expect to virtually disappear at some point, when it all becomes too absurd.
As to (semi) public postings, this is a more complicated story, I think.
And there's a third category of data: Your search history, the links you click in social media etc. Platforms collect that data, too, of course - and we usually don't know what they do with it.
I first learned about email encryption in the Nineties from a man who worked on producing PGP and tried to get me to use it. Of course I could see his points and got a bit paranoid for a while but, aside from work related correspondence (unencrypted by default) not much of what I was saying seemed all that important to hide. I figured that if I /tried to/ hide it it would /seem/ more important to snoopers.
@stefanieschulte @kensanata @edavies
I think Open Whisper Systems has succeeded at this, at least partly. WhatsApp (which I'm not using) is now encrypted by default, and their own messenger app, Signal, has become fairly popular, too. Kudos to them.
Which is a good step in the right direction, Stefanie, though it may be too late for that. Someone's previous online behavior can easily catch the attention of a government entity, or even some rich person with lots of resources and enough curiosity to decide to work on decrypting something.
Maybe I'm just cynical, but I believe that nearly all decryption can be broken nowadays with the right resources. Ironically the book I've been reading, Mr. Penumbra's 24 Hour Book Shop, has Google fail to decrypt a very old book, but I suspect the decryption will succeed before I finish the story.
Encryption makes the encrypted-state data exceedingly difficult to unencrypt. So you don't bother.
* Get someone to reveal their password or other key.
* Intercept the data before, or after, it has been decrypted.
* Have someone send you the (unencrypted) data directly.
* Impute information from other sources. E.g., call records or geolocation rather than decrypting a calendar.
The biggest target, generally, though is to simply rely on other metadata which aren't encypted in the first place. These data are almost always more useful (standardised) and informative.
It makes the issue fairly moot.
Exactly! What's the point of going through all the extra effort, and asking others to do so, too, when there's likely to be something along the way that will invalidate it all?
If something's really private and important the only way to keep it that way is face to face communication, away from cameras and curious eyes and ears. If that sort of thing is even possible anymore. ;)
When you've got a multiple-points-of-failure system, you don't just shrug, say "there are lots of holes", and walk away. *You start fixing what you can.*
If you fix up /one/ set of holes, to the point it's no longer the biggest threat, you turn to the next.
It's an iterative process.
The /other/ holes /don't/ give away the whole enchilada.
@Euphoria In particular, metdata /can/ be secured, though the route there is almost certainly regulatory: make the data too hot to collect or hold, make it useless to trade. It is cheap, but not /completely/ costless, to collect. And if you can switch the economics, making it far more trouble than it's worth, then it won't be collected, stored, or sold.
@kensanata @Euphoria Maybe I've followed infosec Twitter for too long 😉 , but to my knowledge, Signal hasn't been broken so far. The same applies to GnuPG, if used properly with a modern cipher algorithm (even if many people have tried to break Signal and/or GnuPG, I guess).
The problems mentioned by @dredmorbius still apply, but at least it won't be possible for providers to freely "mine" all the messages on their servers anymore.
I suspect I'm a lot older than you are, Alex, but I realized long ago that my online persona actually has a life of its own and will continue whether I'm around or not. There may already be someone studying who they think I am based on what I share. What helped me understand this was when I totally disconnected years ago only to check my email to see Twitter wanted to profile me. They never did.
@kensanata @edavies @stefanieschulte
There are actually AIs that profile people based on what they tweet, & probably other site usage, too. Supposedly one has to give them permission to do so, but I suspect they're doing it anyhow, possibly via government access, so I decided not to worry about it, choosing to participate for the moment.
@kensanata @edavies @stefanieschulte
@Euphoria @kensanata @edavies Maybe we all need to get used to having some sort of "public online persona", and guard it accordingly (occasional pseudonymity can help with this, too, but it's no panacea).
At the same time, I believe that we all need some degree of privacy, and this should include online activities as well (including cell phone whereabouts etc.)
It all got mixed up for me at some point, and was too difficult to keep things completely separate. So much so that I don't even try anymore. I guess using an anonymous avatar would help a lot. I considered doing that when I joined here, and using another name, too, but in the end I chose not to. 🤷🏽 For me it was just too much compartmentalization. Made me feel schizophrenic or disingenuous.
I think it has something to do with age, too. When I was younger, I was much more concerned about posting something "embarrassing" and get "caught" later.
It's possible that, like me, you've seen how something seemingly very innocuous can be misinterpreted or taken out of context. We can never really know how others might react to what's been shared online, or even when. Could be decades later. And then there's the problem of finding things for ourselves when we want or need to.
Oh, what a tangled web we're all in!
@stefanieschulte @Euphoria @edavies Sadly, these days my concerns are more political. With people denied entry to a country because of tweets, a national conservative backlash everywhere I look, I think we need to prepare ourselves, our culture, and work on our software engineering expectations because I want to fight for both the freedom to authentic self expression and a measure of control. I want it both ways. I refuse to believe no improvements are possible.
@stefanieschulte @Euphoria @edavies when I hear people say that we need to "guard" ourselves, or of keeping an online persona, then I hear that we are less free than before. Just to be clear, I don't mind there being consequences now for speech happening now, but if I said stupid things a few months ago and I regret that, it should be easy for me to find it and at least undo my own posting. Yes, snoops, crooks, and the rich still keep their records. But not I!
It's a huge problem with publicly archived mailing lists, by the way (you cannot retract your posts unless you can persuade the mailing list admins to do so).
On the other hand, deleted tweets may remain somewhere on the Twitter servers, and somebody might have taken a screenshot, too.
Privacy is nice. I really wish Google would stop turning on GPS on my phone. I turn it off, go into my settings for something, and see that it's turned back on. I thought I'd removed all the apps that might want to use it but there's something that turns it back on sometimes. I can't seem to figure out what or why. It's very annoying. I noticed it goes on when I enter specific areas. It's kind of creepy.
I can always go back and delete all the tweets, all the Facebook posts, all the Mails, all the Instagram pics, but have you tried doing it? Deleting old stuff is a sad chore and nobody does it. Forgive and forget? You wish. The search engine indexes would forget, if only you'd delete, but you effectively can't.
@alephnull For a while I simply thought that new cultural norms would emerge. But that has not happened. So now I'm thinking that perhaps this is the fault of software engineers. The example I am most familiar with is a wiki. Users would ask for a Git backend, for example. They value perfect knowledge of the past and don't consider that this is the exact mindset that is giving us the surveillance society.
@kensanata Knowledge is valuable. When I am recruiting, Stack Overflow gives me a way better picture of people than LinkedIn, for instance. I don't think software engineers are the ones driving the obsessive recording of events. People are just following the money. Note that we have precious few cultural norms that even approach universality.
@kensanata I think that the whole situation could be fixed if somehow the data became liability for the the ones storing it, instead of the ones who produce it. Storing personal data should have a cost, then the companies would have incentive to only store the data that is absolutely necessary and only for as long as necessary.
Whether the cost is in form of a risk for high penalties when the data leaks, or simply a "database tax", doesn't matter that much then.
I agree I would like a way to backup/export my conversations & likes, but barring that, I'm very grateful that I can go back through my timeline & find things.
The longer the timeline, the more tedious it can become (although it's always an interesting refresher), but I comment or favourite *because* I want to find it again.
(And I DO go back through my feeds often.)
I also think a sense of history is important. 🙂
I think it depends on how one is personally organised. My email/feed serve as my diary, as prob at least your email/blog do.
The rest is the same housekeeping online that you would do IRL; delete old posts as you would throw out/donate possessions you no longer need/want.
But I would not want an admin to arbitrarily delete everything prior to a certain date.
Nor would I want to burn down the house to avoid housekeeping. (Although once or twice I've been tempted!)
I think it's like anything; the longer you let it go, the worse it gets.
Then you have no choice but to burn the house down. 😮
I *would* like a way to save/export/backup Mastodon threads.
And perhaps you could mention to admins about an auto-delete feature for those who would want it? I do know at least one person (on another site) who would probably use it - he has admitted he 'posts & runs' and rarely goes back.