A data breach at a third-party customer service provider has exposed the personal data of some Discord users, including names, email addresses, and a small number of scanned government-issued photo IDs.
Aren’t platform providers supposed to delete this sort of PII immediately after they’ve verified it? I think it’s more shocking that Discord has just been sitting on all these ID images this whole time to begin with.
Aren’t platform providers supposed to delete this sort of PII immediately after they’ve verified it? I think it’s more shocking that Discord has just been sitting on all these ID images this whole time to begin with.