Hack Club has been handling children's data for 4 years without a privacy policy

38•alexkrchff•1h ago

Comments

3rodents•25m ago

Sounds like Hack Club is doing a great job at preparing teenagers for the real world: nobody cares about the things you care about as much as you do. The most important skill to learn for the real world is to pick your battles. Using ChatGPT for legal advice is dumb, but it’s not your battle to fight.

edent•20m ago

It absolutely is their battle to fight. This organisation appears to be exploiting them and their data.

Chabsff•13m ago

Agreed.

DEATH handing out swords to kids as Santa in the Hogfather is a funny joke, not an example to follow.

1a527dd5•24m ago

Not sure if it is just me, but the background animation absolutely kill my browser (Chrome) and scrolling is _super_ laggy.

GaryBluto•19m ago

I'm using a high-end ThinkPad for CAD and it's slowing down the page for me too.

PhilipRoman•18m ago

FWIW it's smooth on my $150 android shitbox.

NSPG911•16m ago

the animation is so useless and doesnt add anything to the actual post

udev4096•15m ago

I would highly suggest to block JS while you're only browsing. It loads fast, most trackers won't load and better security as most browser exploits leverage JS all the time

aavshr•12m ago

yes, had to use reader mode.

embedding-shape•3m ago

I have a RTX Pro 6000 as my main GPU currently, and this website pins it to ~40% utilization! Never seen a website do that before, some sort of kudos to the web master is deserved.

It still renders smoothly though and doesn't go above 40C so I guess it could have been worse.

tomalaci•14m ago

Companies should quickly realize that ChatGPT can go both ways - it can turn a "script-kiddie" into fully fledged hacker if vulnerabilities continue to be this sloppy. I am fairly certain that low-skill hacker sweatshops already heavily rely on LLMs to quickly exploit trivial vulnerabilities like these.

Like it or not but I feel like account logins, PII and payment stuff will have to be handled by central big orgs. Ideally, I would like that to be a competent open-source government service. For now it is big companies like Google that can shove its SSO around in accessible manner to other sites.

prodigycorp•10m ago

I'm usually the type to be annoyed at hn people who nitpick about articles but.. this is unreadable.

jstummbillig•9m ago

> so in july 2025, i discovered that neighbourhood was exposing thousands of users' full legal names through an unprotected API endpoint. literally anyone with a slack ID could access this data. no authentication, no nothing. just a URL parameter and boom, there's your real name.

> i sent formal breach notifications to security@hackclub.com and gdpr@hackclub.com on july 9th. radio silence. nothing. not even an automated "we've received your email" response.

> when i tried talking to HQ staff informally, the responses were... well, shocking doesn't quite cover it. the first intern told me that since hack club is US-based, they're "not held to GDPR," that if fined "nothing compels us to pay it," and that EU people "void your EU protections" by coming to the US.

What? How did we get from (allegedly) informing them about a security vulnerability to them responding "nothing compels us to pay it"? I feel like the author is not being quite as candid in their account as they should probably be.

Lumine AI from ByteDance: A VLLM Agent That Plays Genshin Impact

Why Fei-Fei Li and Yann LeCun Are Both Betting on "World Models"

Speaking Multiple Languages May Slow Down Biological Aging

Daisy AI

4k Free N8n Workflows in One Repo

Big Tech's Soaring Profits Have an Ugly Underside: OpenAI's Losses

Yard-Lint: Keep Your Ruby Documentation Solid

The Great Stagnation

I spent $638 on AI coding agents in 6 weeks.

How to stop having FOMO as a curious engineer: hold a thread

Math Education: What If We Started with Sets and Groups Instead of Numbers?

The McNamara/Quantitative Fallacy

Animating CSS width or height no longer force a Main Thread animation

Hadsf: Aspect Aware Semantic Control for Explainable Recommendation

What happens when our self-reliance relies on technological providers [pdf]

Computational Thinking [pdf]

Oversight Committee Releases Additional Epstein Estate Documents

Problem Discovery for Startup

Things I wished more developers knew about databases

Embryo Corp Took the First Step Toward Creating Real Unicorns

Germs and the big lie: unmasking the root cause of heart disease – Dr Paul Mason [video]

Loosely, yet Tightly Coupled

EU moves to bar China from parts of Horizon Europe

Flying with whales: Drones are remaking marine mammal research

Ask HN: I forgot to remove a swear word from a PR and it got merged. What now?

Developer Tier for Aiven for PostgreSQL Services

The magic of the world's rarest blood type

Should I focus on improving my product or acquiring new users?

Tired of endless scrolling? Stake money, less screen time, get payed back

Meta's Ray-Ban Glasses Users Film and Harass Massage Parlor Workers