I know I said I was done, but I can’t help myself.
I had made the same resolution, but I do feel very strongly that users deserve control of their personal information, and all this law does is make this easier for individuals. And I am someone who has been working extensively with market research data longer than I care to admit I am old, even before the Interwebs were a gleam in Tim Bernese-Lee’s eye.
Basically all the law requires is that a site gives people the right to decide if they want to be tracked or not, the right to be able to access the data, and delete data that has been accumulated about them, and to receive timely notification if their data might have been breached. Everything has to be in plain easy to understand language, and information easy to monitor and control.
You keep saying that you can block people. That’s explicitly and intentionally made not possible by the rules. The link I posted above that nobody has bothered to click explains this in detail.
I have read a ton of information otherwise. There are probably billions and billions of firewalled and walled garden pages being served in the EU every minute.
Re: PCI: 1. That had nothing to do with Equifax. 2. My whole point is that it’s security theater, not actual security.
Not even remotely true, and the Equifax data leaks was one of the many reasons why the law got off the ground. It’s also Facebook, Tinder, etc., etc., etc. It is 100% about security and privacy.
And as to this:
This has nothing to do with GDPR.
You sure? Because this site says that cookie popups are going to be heavily affected by GDPR.
This is like trying to explain that the TSA isn’t there to make you secure, it’s there to make you feel secure. It’s the same with this law.
Even if it saved stopped one incident, I think the TSA is worth it. I was on my way to work in Manhattan when 9/11 hit and I know people whose lives were dramatically affected. And I am eternally grateful for the TSA whenever I don’t have to remove my shoes, etc. before entering a gate. Hallelujah.