56
submitted 9 months ago by pacjo@lemmy.dbzer0.com to c/privacy@lemmy.ml

I wanted to delete my old oppo id account, and to do that I'll need to login into it, but I don't know the password.

Password reset requires saying when the account was created (month and year) and "tech support" can't help here either.

Is it legal to block / hide account deletion behind login in European countries? GDPR (and polish RODO) both talk about a right to data deletion, which in this case, I believe, isn't respected.

you are viewing a single comment's thread
view the rest of the comments
[-] taladar@sh.itjust.works 56 points 9 months ago

What would prevent someone else from requesting the deletion of your account if there was no proof that you are the person whose account it is?

[-] pacjo@lemmy.dbzer0.com 6 points 9 months ago

I'm writing from the email associated with the account, this is enough for most services I encountered

[-] mp3@lemmy.ca 20 points 9 months ago
[-] lazynooblet@lazysoci.al 1 points 9 months ago

But spoofing doesn't allow a 2 way conversation. Confirming the email should be enough

[-] pacjo@lemmy.dbzer0.com -5 points 9 months ago

That's just how it is. If you try hard enough everything can be spoofed. You can also try guessing someone's password and creation date of an account. This is not the issue here.

[-] mp3@lemmy.ca 22 points 9 months ago

The issue is with support not giving you an adequate account recovery method, they're correct about validating ownership of the account tho.

[-] taladar@sh.itjust.works 9 points 9 months ago

Email (on domains without DKIM and SPF at least) can be spoofed so easily, you could literally do it with on-board tools and a few lines of typing though. It is literally just sending an email that has your email address in the From header.

[-] lud@lemm.ee 2 points 9 months ago

What are the odds that OP is emailing from an email that's not configured correctly? Very low.

[-] taladar@sh.itjust.works 3 points 9 months ago

If you mean from a domain without DKIM and SPF on the sending domain and DKIM and SPF validation on the receiving one? Pretty high.

[-] lud@lemm.ee 0 points 9 months ago

Not really since Microsoft, Yahoo (I guess), and Google dominate the email space really hard.

[-] taladar@sh.itjust.works 4 points 9 months ago* (last edited 9 months ago)

In terms of domains not really. Only the free-mailers use domains by one of those. The corporate users still need to set up their DNS properly for those technologies even if they use one of them as a mail hoster.

[-] lud@lemm.ee -2 points 9 months ago

Why would OP contact OPPO using a corporate email?

It's extremely likely that they don't have their own domain since it's very uncommon for personal usage. Some absolutely do but they are in the minority.

Of course custom emails need to be set up properly, otherwise all mails would just go to spam.

this post was submitted on 11 Jan 2024
56 points (81.1% liked)

Privacy

31609 readers
512 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS