user-accounts


Best practices for data deletion on user account termination


On a site that has a fair share of user-generated content such as forum threads, blog comments, submitted articles, private and public messaging, user profiles, etc; what is the best practice as far as what to do with the user-generated data if a user terminates their account?
I'm not asking legal advice and I don't view this as a legal question so much as a question of striking a balance between the user, other users, and the site because terms of use can be drawn up after that balance is struck. Some of the following scenarios should be considered when a user deletes their account:
Private messages between users -
Should the conversation trail be
deleted? If so, how do you account
for cases of harassment where legal
evidence is needed?
Forum questions or answers - If the
user asked a question, should the
entire thread be deleted? If they
answer a question, should the answer
be deleted?
I'm asking this question as I'm implementing user accounts into a CMS. I know that Facebook recently ran into trouble with their changes in their terms of use, but how do you balance a desire to delete with the needs and investment of the other users who also participated?

Generally speaking with databases you rarely delete anything. You can mark it as deleted but generally speaking you keep it in your database at least for a time.
There are many reasons for this. Some of them are legal. You may have requirements ot keep data for a given period. Some of them are technical. Sometimes its just a safeguard. You may need to restore the information. The user may request their account is reopened or it may have been locked due to spamming but that was because the account had been compromised and has now been restored.
Old data may be deleted or archived but this may take months or even years.
Personally I just give relevant data a status column (eg 1 = active, 0 = deleted) and then just change the status rather than delete it 99% of the time.
Data integrity is another issue here. Let me give you an example.
Assume you have two entities:
User: id, nick, name, email
Message: id, sender_id, receiver_id, subject, body
You want to delete a particular User. What do you do about messages they've sent and received? Those messages will appear in someone else's inbox or sent items so you can't delete them. Do you set the relevant field in Message to NULL? That doesn't make a lot of sense either because that message did come from (or go to) somebody, even if they aren't active anymore.
You're better off just marking that user as deleted and keeping them around. It makes this and similar situations much easier to deal with.
You also mention forum threads and so on. You can't delete those either (unless there are other reasons to do so such as spam or abuse) because they're content that is related to other content (eg forum messages that have been replied to).
The only data you can safely and reasonably delete is child data. This is really the difference between aggregation and composition. The User and message relationship above is aggregation. An example of composition is House and Room. You delete a House and all the rooms go to. Rooms cannot exist without a House. This is composition or, in entity relationship terms, a parent-child relationship.
But you'll find more instances of aggregation than composition (in my experience) so the question becomes: what do you do with that data? It's really hard to erase all traces of someone without deleting things you shouldn't. Just mark them as deleted, locked or inactive and deal with it that way.

You could just mark the user as deleted and then whenever you display any content involving that user then you display the name as "Ex-User" or something.
This protects the departed users identity without destroying your content.

You should keep all the content and just mark user as deleted so other users won't be able to see his or her profile, username etc. Then another user should be able to register by the same name (since it should become free).

I've been thinking about these same issues for quite some time. Honestly you shouldn't delete a thread started by a user-to-be-deleted if the other people have contributed their time and efforts to it. I remember on one forum there was a rule you can't delete your thread after somewhat 11 hours after it's been published. I guess the idea behind is that you can't take your word back after you've pronounced it.
So, better lock account but don't cascade-delete anything in relation to user.
Especially, so that they can delete their account, then register under the same name and start it all over again.


Related Links

How can I save accounts made at my website?
Can I change account type on elance from individual to company
SSH.Net creating user account
How to change user account password to blank using batch file
How to allow anonymous users to sign in to Kooboo? [closed]
User management
how can i ensure only one user account per UK resident is created on my website?
generating/ storing account activation code
Best practices for data deletion on user account termination

Categories

HOME
c#-4.0
google-api-php-client
framework7
getelementsbytagname
rdf
retrofit
acquia
django-imagekit
facebook-messenger-bot
amazon-cloudformation
spring-xd
offline
windows-azure-storage
designer
saxon
http-status-code-504
flux
interop
sms-gateway
riot.js
dcevm
emgucv
spark-jobserver
brunch
elasticsearch-ruby
saas
libuv
objectanimator
newline
bluestacks
bcd
exuberant-ctags
android-kernel
plsql-psp
streamsets
starteam
spring-security-kerberos
password-encryption
turbogears
qwt
outlook-2013
appcompat
termination
pango
theming
worksheet
dtexec
r-forge
redundancy
jquery-filter
grails-tomcat-plugin
infix-notation
radtreelist
underscore.js-templating
py2app
disque
dataview
goose
r-tree
thredds
varargs
responsive-images
ios9.1
dundas
npapi
system.reflection
javafx-webengine
eol
phpthumb
marmalade
poller
uv-mapping
c18
gridfs
xamlparseexception
itmstransporter
javaspaces
getmessage
semantic-diff
eclipse-templates
gdlib
w3wp.exe
filtered-index
mtj
windows-live-messenger





Mobile Apps Dev
Database Users
javascript
java
csharp
php
android
MS Developer
developer works
python
ios
c
html
jquery
RDBMS discuss
Cloud Virtualization