Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Should this method have an easy solution to "Right to be forgotten"? #161

Open
brianorwhatever opened this issue Dec 19, 2024 · 1 comment

Comments

@brianorwhatever
Copy link
Contributor

Currently the deactivate method still returns a DID and the log still exists. Should we make this more robust and delete the log or something along those lines?

@Reccetech
Copy link

Reccetech commented Dec 19, 2024

In the conversation @swcurran mentioned that a 3rd party operator handling a "right to be forgotten" request could just delete the relevant DID log and then anyone trying to resolve the DID would get a 404. I think this is a satisfactory solution. Maybe a description of this flow can be added to the spec under "Security and Privacy Considerations"

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants