As I understand it:
As long as the link between data and user is severed, they are compliant with GDPR. Anonymising data (proper non-reversable anonymisation, rather than pseudo-anonymisation) is as good as deleting. As long as it’s not personally identifiable, it’s OK.
I suspect anyone else expecting the EU to purge reddit of their comments will be equally disappointed.
Any kind of federated alternative would have to use P2P in some way, and I’m not sure how well that would work. Peertube appears to be exactly that, but testing a video just now showed that it was all from servers and none from peers, so how well it would work with thousands or millions of people watching at once, I can’t say.
If I watch something, I’m happy for my outgoing bandwidth to be the cost for that. Most of us have plenty of that to spare, even if my patience for adverts is zero.
How would content creators be paid? Not my problem, but being paid by advertising has not lead to an improvement in content for the most part. Shovelling out videos with zero actual real content is not something I want to encourage.
Biometrics also aren’t great and uniqueness. At least where computers are concerned.
Recently we had one of our customers install fingerprint readers on their points of sale, the idea being any staff member can log in just by touching the pad. Even with only a few hundred staff registered, you get people logging in as each other.
Give us the password, or it’s two years in the clink for you me old matey.
https://en.wikipedia.org/wiki/Regulation_of_Investigatory_Powers_Act_2000
Five years if you look like a nonce or a Muslim.
Probably take a dim view of it when emulating current gen games.
Also they made a ton of money off it.