semisol's avatar
semisol semisol@nostr.land 8 months ago
This appears to be some sort of metrics functionality. Don’t think there is any bad faith. I’d recommend @primal fix this. The public key seems to be used for certain personalization, so it makes sense they might store that for debugging, but still a privacy risk. They could rework their debugging system to integrate tracing and logging to identify specific issues, without storing search queries or pubkeys. And limit retention to a few days, and only when necessary (query error or high latency). View quoted note →

Replies (6)

Jay's avatar
Jay _@wisehodl.dev 8 months ago
Data not collected by the app, but perhaps user activity is logged on their caching server, since the app doesn't work without it. It's essentially a platform.
1 replies ↓
DudeChicken's avatar
DudeChicken chicken@primal.net 8 months ago
semisol's avatar semisol
This appears to be some sort of metrics functionality. Don’t think there is any bad faith. I’d recommend @primal fix this. The public key seems to be used for certain personalization, so it makes sense they might store that for debugging, but still a privacy risk. They could rework their debugging system to integrate tracing and logging to identify specific issues, without storing search queries or pubkeys. And limit retention to a few days, and only when necessary (query error or high latency). View quoted note →
View quoted note →