View Full Version : The EU's GDPR & Anthrogenica (23rd Feb 2019)

02-23-2019, 11:17 PM
Dear Members,

Although we've just announced a slew of new Sections to our Terms of Service (ToS) separately here (https://anthrogenica.com/showthread.php?7-Terms-of-Service-and-Forum-Rules-Update&p=549998#post549998), a separate stickied thread outlining our full compliance with the European Union (EU)'s General Data Privacy Regulation (GDPR) legislation is required. This is spelled out in Section 5.9:

5.9 ... Anthrogenica is fully compliant with the EU General Data Protection Regulation (GDPR) and ePrivacy requirements, which we fall under the jurisdiction of, as 'data collectors' of private user information. Although our servers are based outside of the EU, we nonetheless comply with these legal rulings as a general policy. A one-time active consenting prompt for cookie storage will appear for new users or those accessing the site from another device.

With the exception of the single event pop-up after logging in requesting your explicit consent for cookie storage, there are no other functional changes to your user experience here.

We specifically conform with the GDPR requirements through the following Terms.

Data Portability & Right to Access

5.5 Anthrogenica collects a limited set of private user information from its members. This includes IP address data, registered email address and cookie data. In keeping with Section 5.1 and 5.2, the administration will not disclose any of these to any third parties, outside of a written and direct request from law enforcement. Should members request to view their own information or wish to learn why each are used, they should contact an active member of staff.

Right to Erasure

1.6 Member requests to delete their own public posts beyond the 24 hour catchment period will not ordinarily be undertaken by any member of staff, with the exception of members residing or posting from within the European Union (EU).

5.8 Anthrogenica complies with the right to erasure ('the right to be forgotten') for members posting from within the EU. Should an EU member decide they wish to have personal aspects of their online activity on this site removed, they should contact an active member of staff. In this context, we draw a distinction between public personal data (e.g. voluntary posting of surnames, birthdates) and privately collected personal data (e.g. registration emails, birthdates). Please refer to Section 6.9 for further stipulations.


5.6 Anthrogenica stores cookies to personalize or enhance your user experience. A cookie is a small text file that is placed on your hard disk by a web page server and is uniquely assigned to you. They cannot be used to run programs or deliver viruses to your computer and can only be read by a Web Server in the domain that issued it. Cookies provide a convenience by storing information regarding any personalizations you've made on Anthrogenica. They save your preferences (i.e. forum skin choice) as well as remembering your login information during sessions for quicker site access. We employ only one third party tracking cookie (Google Analytics) for general activity monitoring. Members have the ability to accept or decline cookies at any stage. Most browsers automatically accept cookies, but members can usually modify their browser setting to decline cookies, which may disable some functionality on Anthrogenica.

With respect to consenting to having any of your data present on the site, this was specifically asked of all prospective registrants at sign up since Anthrogenica was founded in August 2012.

Data Storage

5.7 This site is fully backed up on a weekly basis. The data is kept secure on three offline portable devices with an established contingency plan. The site's data is managed by one of Anthrogenica's founding administrators (considered the 'data manager' for these purposes). This data will never be conveyed to any parties outside of the current administration. Should the 'data manager' resign from their voluntary role within the site's administration, these duties will be transferred to a nominated colleague.

Although this site has formally declared it's full conformity with the GDPR and ePrivacy laws, we nonetheless reserve the right to regulate the manner to which users decide to invoke these:

6.9 To minimize the potential for abuse, EU members requesting for the removal of multiple portions of public personal data they had posted after the announcement of this section (announced around 2/23/19 23:00 UTC) will be subject to disciplinary measures. Despite our Terms indicating otherwise, please participate on the site as if all future contributions are irrevocable.

Thanks for your attention,