Data should never be actually deleted from the database, that breaks all the best practices. It can be overwritten with garbage though. But it should always be present.
For example, if you create a new account with email, username and password and get assigned some id like 42. Then after a while you want to delete your account. The account should stay intact, id number 42 should still be occupied, but your email, username and password should be replaced by null values.
:(
this indicates the user aint gonna be deleted, just marked as “deleted” but still actually exist ?
this is common practise, at least.
im a bit too lazy to look through all the code. maybe deleted users arent show, and their comments “content” is still there?
though technically my comments could be considered personal data and thus break gdpr
Data should never be actually deleted from the database, that breaks all the best practices. It can be overwritten with garbage though. But it should always be present.
For example, if you create a new account with email, username and password and get assigned some id like 42. Then after a while you want to delete your account. The account should stay intact, id number 42 should still be occupied, but your email, username and password should be replaced by null values.