So, I get your point. I can see how (1) can be aggravating. Can't really say anything to defend it, that's the Brussels effect for you. From the point of view of your own sovereignty, it's a bad thing, period. From the point of view of an effect on the lives of average people, I'm not so sure, it's so cut and dry.

Now, point (2) is, unfortunately, in the same vein as smoking, pollution, seat belts etc. Uninformed people (uninformed because they have better things to do) are not protected from their lack of knowledge. They suffer the consequences just the same.

And while I agree that and informed person, making a self-destructive choice has (in most cases) the right to do so, there is something to be said about the very, very powerful exploiting the uninformed. And this is where GDPR comes into play. It's protecting normal people, from a very, very big threat, that is not that obvious and is being wielded by the powerful.

GDPR is one of those laws restraining western corporations from going full dystopian future on us all. I said restraining, to be honest, I think it's just slowing them down.

And as far as surveys go - it used to be the same here. Europeans didn't care and said exactly the same things (i.e. the famous "i didn't do anything wrong, so I have nothing to hide") and then activists worked for years to educate them that, at the very least, it's leading them to buy things at higher prices. Now most people are extremely sensitive to their data.

I get it - what you're saying is a very common-sense regulation. Reasonable people can disagree about this.

But different societies prefer a different balance here.

Americans are used to a more caveat emptor situation. Europeans want more regulation. Which one to choose is a political choice.

What's happening is that the political choice that the EU went with is being forced on the rest of us, whether we like it or not.

With all due respect, you're speaking on behalf of 1 person here, not an entire country of people, and certainly not the entirety of the non-E.U. world. "We" can speak for ourselves, and don't all agree with the views you're ascribing to us. And "I" don't agree with the sort of stereotyping I'm responding to.

I'm personally glad someone is doing something for my privacy here. My own government, due to regulatory capture, is unlikely to act in my best interests here.

Uh, what?

Because the EU is forcing you to do something that you want to do anyway, you now like it?

If you want cookie banner laws in your non-EU country, vote for it.

I don’t want some bureacrat I didn’t vote for issuing diktats that affect how I build my business and my websites.

The entire point is that we all need representatives in government.

The EU isn't forcing me or you to do anything.

The article elaborates on this point: There Is No Cookie Banner Law. Only bad website operators choosing to abuse their users with annoying consent dialogs.

Nobody in Europe is issuing "diktats", meaning citizen-supported legislation I guess, or affecting your business, unless you're trying to deal with their citizens' data. Just don't process EU citizen data and it's not an issue. Better yet, just don't track users.

In any case, your disagreement only serves to underscore that you were speaking on behalf of 1 person, not any country or countries. Otherwise, we wouldn't be disagreeing!

I actually self-host all my web assets and use Matomo already. So I do actually agree with the premise.

What I object to strenuously is someone dictating terms to the world from distant shores, especially since they seem not to get how the internet works (it’s all funded by ads, online sales, and ads for online sales, all of which involve metrics and tracking!)

The diktats I mentioned include a ruling that Google Fonts are illegal now. So if I’m using those, or I’m using Google Analytics, and a European happens across my site, I’m now a criminal? Fuck that.

The consequences of contravening the GDPR are uncertain but sounds scary. This is terrible for the open and free internet.

Please tone down the hyperbolic rhetoric and FUD. Consider how strongly you can make your point without them.

To the point: Nobody in Europe is "dictating terms to the world", or "issuing diktats", meaning passing citizen-supported legislation I guess, or affecting your business, unless you're trying to deal with their citizens' data.

> The diktats I mentioned include a ruling that Google Fonts are illegal now. So if I’m using those, or I’m using Google Analytics, and a European happens across my site, I’m now a criminal?

No, because website operators have at least 4 more options:

1. Don't process EU citizen data (block them).

2. Don't track users, period (host the font on the site instead).

3. Don't track users until they log in (convert them).

4. Get users' informed consent (let them know that they'll be tracked on the site due to the choice of google fonts instead of hosting a font).

Wow, that wasn't scary at all! The general attitude I'm getting from some folks, though, is that they want to do anything they want to users without consequence and never change. This attitude is going lead to a lot of anguish. Others have rights, too, and they override our right to do whatever we want to them, in many cases.

Here's the problem.

> 1. Don't process EU citizen data (block them).

Many webmasters have neither the time nor inclination to read up on EU law. So blocking is the easiest and safest solution to minimize our legal risks. This is absolutely terrible - I grew up dreaming of an internet that is really humanity's network; not islands separated by political allegiance.

I agree that I can tone it down, but 99.99% of the FUD around is directly the fault of the EU for not making it crystal clear what the theory and practice around their internet laws will be.

Luckily that's just 1 of the 4 options, and those 4 options are just 4 of many options, so no need to focus on 1 of many and say you don't like it: you can just choose another! Or you can choose to create the islands. I don't see what's so terrible about that.

Did website operators think they could keep violating the rights of EU citizens indefinitely? I mean, based on enforcement capacity, chances are most operators can, but it'd be good to stop. IMO, A network for humanity should prioritize humans and their rights, over tracking and ads, and the lack of respect for those rights is what I find terrible.

Real talk: if you have questions about the GDPR, ask them, and I'm sure the smart folks at HN will be able to help you find answers and overcome obstacles. You can build and not break laws, whether GDPR or ITAR, we can help. Nobody's saying it'll be zero work, but nobody's entitled to run a business doing whatever it wants with zero work, either, and shouldn't expect to.

You keep missing my point, possibly on purpose, so I'll end this here.

The EU and the US and China disagree about what user rights are and what reasonable behaviour for a website is.

If one of those parties enforces their vision onto their traffic, it has a chilling effect - splittig the net into federations. By making GDPR super vague, the EU just makes everything worse, including for Europeans. If you disagree that the rules are vague, I'll refer you to the rest of this thread. Nobody knows what's being enforced or what the penalties are.

As far as the GDPR goes, only webmasters choosing to ban entire countries of users out of greed (wanting to unfairly profit off users) or laziness (not caring enough about the privacy of their users) or spite (punishing users because you don't like the GDPR) can achieve the splitting you describe. If it happens, it would be their decision, and thus their fault.

Real talk though, again: you say you personally feel the GDPR is vague. If you have questions about the GDPR, ask them, and I'm sure smart folks at HN will be able to help you find answers and overcome obstacles. You can build and not break laws, whether GDPR or ITAR, we can help. If you have troubles building, share them with us, let us advise you. Nobody's saying it'll be zero work, but nobody's entitled to run a business doing whatever it wants with zero work, either, and shouldn't expect to.