been reading some threads about GDPR compliance with meet.jit.si provided by 8x8. But not sure what applies to a self hosted set up of Jitsi.
It is up to your deployment. Jitsi-meet does not store any personal information, its up to how you have configured the rest of the services. Do you have jibri, does it store thing, where it stores it… This is up to the deployment and how it is done and meet.jit.si is an example deployment.
Understood! We are not using jibri, but prosody, jicofo, jvb etc. Jwt auth
To my understanding some jwt content will be displayed in cleartext in prosody, e.g displayname. And of course the client ip adress
Bur what happens with the chat and polls? Are they only kept in memory and removed serverside when the meeting is closed?