I am in the EU.

I asked a company in which I had an account to delete my account. They told me they would do that as long as I sent them an ID and a postal address. This is to ensure that "I am the right person".

I never gave them an ID and a postal address in the first place so how would that verify anything, and I'm using the email that I used to sign-up with them to ask for the deletion.

Am I in the wrong to believe that this should be easier? Are they misinterpreting the GDPR or am I?

What are my options if I do not want to send my ID and postal address?

--

Their arguments are:

Article 5(1)(f) of the GDPR requires us to meet security obligations in data processing. Since data deletion is permanent, we need to ensure that the request is indeed from the person concerned.

Furthermore, Article 12(6) of the GDPR states: "…when the data controller has reasonable doubts concerning the identity of the natural person making the request referred to in Articles 15 to 21, he may request the provision of additional information necessary to confirm the identity of the data subject."

I have an external drive (3.5" hdd, SATA) in an enclosure (usb 3) (purchased separately), connected to a thunderbolt dock (OWC) connected alternately to an iMac and a macbook pro. The HDD goes to sleep, and causes problems. Freezes, weird internet access problems, kernel panics.

I have done some research, and can't seem to figure out:

how to know whether it is the drive, enclosure, or computer causing the sleep, although, fiddling with various settings on the mac seemed to have no effect, although it may have increased my battery usage :(

how to adjust settings on the drive, or in the enclosure.

How to determine what the sleep behavior of prospective drives will be.

As a workaround, I tried to write a zsh script to touch the drive ever few seconds. This kinda worked, but was a struggle to figure out appropriate permissions issues and how to make it run automatically.

I welcome all guidance, pointers to resources, clarifications, incantations, well-wishes.

I was scrolling through Tildes a while ago when I can across a comment talking about how employers fed data into a credit-bureau-esque application that they could check to see things like your past salary data. Unfortunately, I can’t find that comment anymore. Does anyone know what it was, or where to find it?

I find the concept to be incredibly worrying, especially as it seems like unregulated technology or at the very least operating in a gray area carved out by existing credit reporting.

(Please let me know if this should go in ~misc or somewhere else. Wasn’t sure where to put it!)