And, to be clear, that’s collected by your Masto instance as well. Looking at the Android app right now it reads “This app may share these data types with third parties: Personal info”. Presumably your login data with an instance, I guess?
That doesn’t mean BS isn’t storing more data about you, but man, people seem to assume Fedi apps are private and they really, REALLY are not. That’s fine, it’s not the point of them to be private, but something I learned during the whole Threads federation wars is that people assume their posts are much safer from mining than they actually are.
Just having a persistant, public user ID is arguably enough to tick the contact info box, it’s very intentionally an oversensitive requirement. The idea, like california’s lead-content warning, is to force so many things to use the label that it loses all meaning.
They certainly don’t need the contact info
Your login is your contact info.
And, to be clear, that’s collected by your Masto instance as well. Looking at the Android app right now it reads “This app may share these data types with third parties: Personal info”. Presumably your login data with an instance, I guess?
That doesn’t mean BS isn’t storing more data about you, but man, people seem to assume Fedi apps are private and they really, REALLY are not. That’s fine, it’s not the point of them to be private, but something I learned during the whole Threads federation wars is that people assume their posts are much safer from mining than they actually are.
Just having a persistant, public user ID is arguably enough to tick the contact info box, it’s very intentionally an oversensitive requirement. The idea, like california’s lead-content warning, is to force so many things to use the label that it loses all meaning.