Ask HN: post-factum announcement on privacy policy changes from Indiegogo

2 points

3 years ago

Long time listener, first time caller.

On January 8, I've received an email from the crowdfunding service Indiegogo about privacy policy changes.

Message's first paragraph reads as follows: "We’re writing to let you know that we’ve updated our Privacy Policy, effective January 1, 2023."

This was sent On January 8, 2023. The email has verifiable DKIM and DMARC signatures for "t.indiegogo.com" and was sent from SPF-allowed address space with the following Date header (included in and verified by DKIM):

    Date: Sun, 08 Jan 2023 05:42:30 +0000

Since one of their "privacy requests" (you have to creep around their various domains and providers as they state that they don't accept GDPR-related requests via email) literally reads "do not sell my personal information", it's quite possible that since January 1 they have sold all their customers' data.

Thoughts?