Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Those who implement the tools from the ad companies are responsible for their GDPR compliance - you don't get to offload the blame somewhere else.


This is why all websites have big cookie consent modals that appear before you can view content now. Most people just accept all. (And even when doing that, things like Apple Tracking Transparency have broken fingerprinting for a lot of adtech.)


None of those consent modals are compliant. GDPR compliance requires those modals to make it as easy to decline as it is to accept, and not skew the choice via a pre-ticked checkbox or making one option more prominent than the other. Which again reinforces my point that nobody is interested in seriously enforcing the GDPR.


Also, how effectively can the GDPR be enforced on companies with zero European assets? They can say “stuff it” when the fines are levied. Will the EU force blocking at the ISP level?


Realistically it doesn't matter because:

1) the biggest offenders do have EU-based subsidiaries which can be fined.

2) nobody bothers sufficiently enforcing it even against EU-based offenders, so no point talking about outside-EU enforcement for now.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: