The National Commission on Information Technologies and Human Rights (CNIL) of France fined Discord for 800,000 euros for violation of the general data protection provision (GDPR). The general regulation of personal data protection (GDPR) is a decree of the European Union, with the help of which the European Parliament, the Council of the European Union and the European Commission strengthen and unify the protection of personal data of all persons in the European Union (EU). The resolution is also aimed at exporting data from the EU.
Cnil managed to detect the following:
Discord database stored almost 2.5 million Frenchmen who were not used for more than three years. Now the platform undertakes to delete user accounts after two years of inaction;
Discord takes too simple passwords (from six characters). Now the platform requires longer and complex passwords.
Cnil also warned that after closing the Discord window, the user does not leave the voice chat automatically. To solve this problem, the platform has installed a pop -up window that warns people that the application can work in the background after closing the window.