Board Thread:General Discussion/@comment-24739709-20151026190758/@comment-26402117-20151029193807

SuperSajuuk wrote: Speedit wrote: Isn't leaving a security flaw alone infringing the rights of the users of the Wikia domain? And not hypothetically, by law - clause 4 of the EU Data Protection Directive and clause 7 of the UK Data Protection Act in the UK declare that personal data must be secured against unauthorised/unlawful loss, destruction or damage.

However, I hope that any instances where the secure embedding of social networking or video elements not working are more deeply investigated. Wikia servers are hosted in the US, so US law applies. Local country laws don't apply to websites, as the laws that apply to a website is the location in which the data of that site is stored. This is why certain illegal websites host in countries where copyright law is near to non-existent.

Your point about UK law would only apply if the data for Wikia was stored in the UK, which it isn't, so it doesn't apply.

The strange thing about US law is that data protection law only exists by precedent, but the US sees the most class-action lawsuits for large hacks. Your point is valid - I've edited my post to acknowledge this.