I didn’t know reddit gave out the personal details of their users, but I guess I shouldn’t be surprised.
You make it sound like they have a choice, or do so freely and willingly.
The article is clear on that they don't freely share without assessment though:
Reddit wasn’t willing to go along with the request, at least not in full. The company objected, arguing that handing over the requested information would violate its users’ right to anonymous speech.
Recent legal activity shows that Reddit doesn’t intend to automatically comply with all user information requests.
Lemmy is not storing anything for no reason tho, there's no point in that without advertising. The only data they could hand over would be public anyway.
Lemmy instances can log IPs and any other info they want all day long, there is nothing stopping them. In some jurisdictions they may even be required to.
An interesting discussion! You’re probably right about most Lemmy instances. But it’s entirely possible that some instances are running a modified version of Lemmy that collects more data. And only those admins will understand why. They could sell it as easily as any company.
You need to trust your service providers or accept what they’re doing.
Doesn't even have to be malice. I'm sure that most instance admins are great, competent and caring, but setting up a Lemmy instance is trivial, securing it is not.
The default configuration of a proxy could log connections, the config interface may accidentally be exposed unprotected and so on.
Again, I'm not saying that most instances are inherently untrustworthy. But, depending on your instance, you are trusting one person or a small team of volunteers to stay on top of everything andyou can't expect them to drain their bank accounts in case of legal issues for you.