You are mostly correct, some additional insight from someone who works with security/privacy stuff:

That is different in the EU I grant you

Even in the EU, when a user requests to delete their data, you’re allowed to keep enough to validate they were a previous rule-breaker so they can’t just delete their data and re-register

The session staying open is bad security though.

There isn’t enough context to say for sure, but in general this is standard practice. JWTs, probably the most widely adopted standard for authorization on the web, have an expiry date and cannot be revoked. Yes it’s not great security, but I want to emphasize this is standard practice. Google, Apple, Meta, Slack, etc all do this.

Also, when you request data deletion, the companies have up to a month to do it. I’m not sure if OP expected it to be instant, but it doesn’t have to be

You just get the occasional weirdo from a weirdo instance arguing otherwise

Happened to Lemmy 2 years ago, but there’s still more than enough of you ladies and gents to keep it as my only social media app :)

!boostforlemmy@lemmy.world gang

Years ago I did a UX study on Lemmy’s frontend, and tbh not much has changed since. Things like when editing a thread, the Save button is multiple proximity separators apart from the text you’re editing, making it very easy to missclick cancel. Or in the community search, you can’t search on specific instances that aren’t yours.

I’ve gotten very used to the UI over time but it definitely needs a “pain point” passover

Hopefully people start posting in niche communities!

(But not the Taylor Swift armpit one)

I had a native Korean translate it and my comment was basically their reaction

The notes also call the drone a non-human device. Imagine that’s your best description… Feelsbadman

Lots of criticisms but still really cool. I’d love to see one to scale as well (for width and depth)