People talk about how the Great Firewall creates a Chinese version of the Internet but not much about how the GDPR has basically done the same for Europe. The few good essays on this I’ve seen are by @benedictevans and @benthompson
7
10
2
69
I thought California had a law that was comparable to GDPR.
2
California's laws do not imply that the only way to keep user data safe from privacy violations is for all Californians user data be processed and stored on servers in California.
3
5
That is not what GDPR requires
1
There is no problem storing data outside of the EU if GDPR standards are met. Switzerland, Iceland, Australia are some examples. I know it might be surprising from a US perspective, but there might be a need to change because of laws made by non-US citizens
1
1
I don’t see how you derive at that interpretation. Can you point to a court ruling that supports this? Schrems 2 alone doesn’t.
1
Replying to @benedictevans @Carnage4Life @bertil_hatt @benthompson
Yes, but that does not mean PII can’t be hosted in the US. It means you can’t give your users’ PII to 3rd parties without their consent, which is a good thing in my book

Feb 11, 2022 · 4:35 PM UTC

2
Replying to @stilkov @benedictevans @Carnage4Life @bertil_hatt @benthompson
Or as the article says: “These data privacy judgments complicate how websites and applications can integrate remotely hosted content or services by requiring a legitimate purpose for doing so if personal data gets transferred or lawful consent.” Yes, definitely a good thing.
This tweet is unavailable
Let’s take Facebook as an example. I avoid them, that’s why I don’t visit their site. If I visit yours, I definitely expect you to not send data about my visits to them. That’s why GDPR requires you to ask for my consent before you do so.
2
2
more replies