Comment by iamacyborg
7 months ago
>If a business is really GDPR compliant, it will offer a download option for stuff like user settings and so on.
I've made a bunch of SAR's, including pre-GDPR and I've never received one that contained my user settings, so that seems pretty normal.
The whole PII convo seems incredibly asinine though, "PII" is not a thing in the GDPR. Personal data is[1], but that's not the same thing.
If Kagi keep a record of searches performed by a user, that's something that a SAR should be used for, but the whole convo just misses the mark entirely.
[^1]: See article 4.1 https://gdpr-info.eu/art-4-gdpr/
> I've made a bunch of SAR's, including pre-GDPR and I've never received one that contained my user settings, so that seems pretty normal.
That is odd because the user has right to get ALL the data they want that is stored about them in the service.