in another world this might be surprising in the sense that it's absurd they do this, but this seems pretty standard fare for most technology businesses so nobody should be taken aback that this...
Twitter retains direct messages for years, including messages you and others have deleted, but also data sent to and from accounts that have been deactivated and suspended, according to security researcher Karan Saini.
Saini found years-old messages found in a file from an archive of his data obtained through the website from accounts that were no longer on Twitter. He also filed a similar bug, found a year earlier but not disclosed until now, that allowed him to use a since-deprecated API to retrieve direct messages even after a message was deleted from both the sender and the recipient — though, the bug wasn’t able to retrieve messages from suspended accounts.
Saini told TechCrunch that he had “concerns” that the data was retained by Twitter for so long.
in another world this might be surprising in the sense that it's absurd they do this, but this seems pretty standard fare for most technology businesses so nobody should be taken aback that this is also twitter's practice. that said, i am hoping that people will continue to work toward maybe lessening the normalization of this, because it is still absurd on a lot of levels.
I sometimes wonder if this is a CYA type of thing? I've worked for companies that had us "soft delete" posts and messages even though we weren't doing analytics or anything on them. Granted maybe...
I sometimes wonder if this is a CYA type of thing?
I've worked for companies that had us "soft delete" posts and messages even though we weren't doing analytics or anything on them. Granted maybe that was a plan in the works that I wasn't made aware of... And I'm sure Twitter is doing analytics and such on all of it. So I guess in their case it's probably still intentional. :/
And it's probably easier to be able to say "I don't know, we don't have it" if any authority ever comes knocking as well.
If anyone is interested in a more secure way to DM people (albeit less convenient than Twitter and requires phone numbers) I recommend Signal.
in another world this might be surprising in the sense that it's absurd they do this, but this seems pretty standard fare for most technology businesses so nobody should be taken aback that this is also twitter's practice. that said, i am hoping that people will continue to work toward maybe lessening the normalization of this, because it is still absurd on a lot of levels.
I sometimes wonder if this is a CYA type of thing?
I've worked for companies that had us "soft delete" posts and messages even though we weren't doing analytics or anything on them. Granted maybe that was a plan in the works that I wasn't made aware of... And I'm sure Twitter is doing analytics and such on all of it. So I guess in their case it's probably still intentional. :/
And it's probably easier to be able to say "I don't know, we don't have it" if any authority ever comes knocking as well.
If anyone is interested in a more secure way to DM people (albeit less convenient than Twitter and requires phone numbers) I recommend Signal.