Not sure if that's the right path to take, but I definitely agree something need to be done to add further consumer protections. Many people have a large chunk of their lives tied up tightly into their ecosystems, with no simple way out.
I've been reflecting on the impact of oauth / openid during the last few years. For some people, losing your Facebook or Google account could mean ending up locked out of dozens, if not hundreds, of services! Haven't checked Facebook's TOS, but Google's TOS says they can shut down your account at any time. Considering the size and reach of both, I think they should be required to at least provide a reasonable migration period before fully closing down an end-user's account.
At a minimum you should be able to export your data for some period after account suspension. At the moment are there any cases where they summarily delete everything?
I've been thinking about automating a periodic export but not got round to it. I know they have APIs and services for this under the DLF project but I've not looked into it yet. Does anyone have experience with this?
I've been reflecting on the impact of oauth / openid during the last few years. For some people, losing your Facebook or Google account could mean ending up locked out of dozens, if not hundreds, of services! Haven't checked Facebook's TOS, but Google's TOS says they can shut down your account at any time. Considering the size and reach of both, I think they should be required to at least provide a reasonable migration period before fully closing down an end-user's account.