I wanted to delete my old oppo id account, and to do that I’ll need to login into it, but I don’t know the password.

Password reset requires saying when the account was created (month and year) and “tech support” can’t help here either.

Is it legal to block / hide account deletion behind login in European countries? GDPR (and polish RODO) both talk about a right to data deletion, which in this case, I believe, isn’t respected.

  • taladar@sh.itjust.works
    link
    fedilink
    arrow-up
    55
    ·
    11 months ago

    What would prevent someone else from requesting the deletion of your account if there was no proof that you are the person whose account it is?

    • pacjo@lemmy.dbzer0.comOP
      link
      fedilink
      arrow-up
      9
      arrow-down
      3
      ·
      11 months ago

      I’m writing from the email associated with the account, this is enough for most services I encountered

        • lazynooblet
          link
          fedilink
          English
          arrow-up
          1
          ·
          11 months ago

          But spoofing doesn’t allow a 2 way conversation. Confirming the email should be enough

        • pacjo@lemmy.dbzer0.comOP
          link
          fedilink
          arrow-up
          5
          arrow-down
          10
          ·
          11 months ago

          That’s just how it is. If you try hard enough everything can be spoofed. You can also try guessing someone’s password and creation date of an account. This is not the issue here.

          • m-p{3}@lemmy.ca
            link
            fedilink
            arrow-up
            21
            ·
            11 months ago

            The issue is with support not giving you an adequate account recovery method, they’re correct about validating ownership of the account tho.

          • taladar@sh.itjust.works
            link
            fedilink
            arrow-up
            9
            ·
            11 months ago

            Email (on domains without DKIM and SPF at least) can be spoofed so easily, you could literally do it with on-board tools and a few lines of typing though. It is literally just sending an email that has your email address in the From header.

            • lud@lemm.ee
              link
              fedilink
              arrow-up
              3
              arrow-down
              1
              ·
              11 months ago

              What are the odds that OP is emailing from an email that’s not configured correctly? Very low.

              • taladar@sh.itjust.works
                link
                fedilink
                arrow-up
                3
                ·
                11 months ago

                If you mean from a domain without DKIM and SPF on the sending domain and DKIM and SPF validation on the receiving one? Pretty high.

                • lud@lemm.ee
                  link
                  fedilink
                  arrow-up
                  1
                  arrow-down
                  1
                  ·
                  11 months ago

                  Not really since Microsoft, Yahoo (I guess), and Google dominate the email space really hard.

                  • taladar@sh.itjust.works
                    link
                    fedilink
                    arrow-up
                    4
                    ·
                    edit-2
                    11 months ago

                    In terms of domains not really. Only the free-mailers use domains by one of those. The corporate users still need to set up their DNS properly for those technologies even if they use one of them as a mail hoster.