I don’t think people on this sub use it, but it’s great news for us. The worse it gets the likelier people move on.
I haven’t scraped the terms of service to see exactly what kind of data they collect but I’m not extremely worried about it. I don’t put sensitive information into it beyond my payment information for Nitro. I’m sure everyone here on Lemmy, a self-host and open source site/software, is against programs like Discord because they’re proprietary but I personally just enjoy it and don’t find it very limiting.
- Your IP address will be logged as soon as you login.
- They store everything you send in plain text on an encrypted storage unit.
- They store if your microphone and/or camera is on or off + more of what settings you have made in your own device.
- They force you to give them your phone number in order to identify you.
Source: https://discord.com/privacy
Discord is a privacy nightmare, but not as much as for an example Spotify. Spotify even logs how you hold your device and how fast you move it! Source: https://www.spotify.com/uk/legal/privacy-policy/
- Everything everywhere I connect to has my IP, oh no.
- It’s not plaintext if it’s encrypted…
- So like cookies but for an application, not that intrusive imo.
- “You may be required to verify your account with a phone number” - I provided a phone number once and they’ve never, at any point, sent me anything or asked me to use it. You could easily use a burner phone.
Even thinking about a company like Google seems like more of a privacy nightmare. This is relatively tame compared to most everything else.
- Nope. Not everywhere.
- The actual data is stored in plain text. The hard drive is encrypted. This is called encryption at-rest which Discord uses. Even Google uses this for Google Drive. Hackers “can’t” access the data, but the people working there can. It doesn’t matter if they have fancy roles, your personal data can be access by the people at the company. Your personal data should always stay personal.
- No cookies. Stored on their servers.
- I was forced to enter my phone number before I got as privacy aware as I am today. I doubt that has changed.
- Sure, but I think it’s safe to assume your IP is near public information when connecting to any domain.
- Okay, this is a fair point, I don’t think anyone at any company should have sensitive data open to employees. That’d be as bad as having passwords accessible by X role at the company.
- Near meaningless data though. It’d be like if it knew if your keyboard was connected or not. It’s hard to use that information.
- From what I understand, services use phone numbers because it’s harder for bot accounts to be spammed. Whether they allow themselves to go beyond that is up to the company. Even Counter-Strike and Valorant, competitive games in general, do this to curb the automated userbase.
- Your IP address should always be private even if it is good with IP bans. But IP bans do not fix the issue if it is not a static IP address that the users always has.
- Exactly :)
- Yepp! But they do log it anyway. So the question is why do the log this data? To build a better service? Might be, yes, but it would be much better if they let their users to choose if they want to share this information. Not log it automatically behind their backs (many do not read privacy policies).
- I understand that, but they should not force users to enter their phone number. They should instead come up with another solution like require more CAPTCHA’s. Phone numbers is “the best” solution, but should not be standard.