This time it's California, not the eastern bloc, making trouble for the Internet. Europe wrote the GDPR to apply outside its borders. Now California will require the EU to add “do-not-sell-my-data” buttons to sites and services.
Imagine if Github, a web-based platform that allows users to upload and share code, had to filter through each content upload before it was posted to ensure some part of it wasn’t already claimed by copyright holders. Imagine having to do that on your platform for each piece of public user uploaded content. That future is not far off if the European Parliament passes a copyright Directive set for a vote in mid-late June.
For now, count yourself fortunate. The rules are limited to companies who have personal data of people from or in Europe. But don't get complacent. With the recent news surrounding data security and privacy, the US may not be far behind in enacting data privacy laws of our own. But that's a subject for another blog post, hopefully a little further down the road.
On 25th May 2018, the General Data Protection Regulation (GDPR) will enter into force and start governing all aspects of EU personal data collection and management by websites and apps from anywhere in the world – what data is collected, how it's collected, how and where it's stored, where it's shared, and so on.