> A Chinese service could steal all of your data, sell it, and nothing would happen because they're outside the jurisdiction of the EU.
But now it is illegal, the thing that might happen is that the EU bans Chinese apps like India did.
> Plenty of other businesses won't do business with Europeans as a result.
I believe you, this is something to consider when making stricter regulations. The same happens with food imports regulations and many other fields.
Some of the business that will not be created are business that should have been created, many other will be legitimate business that will simply consider the risk of the nebulousness of enforcement too high.
One example early on was that it is now unclear whether industrial sensors are by accident in violation of GDPR because the resolution needed for industrial application is enough to distinguish different humans.
My uninformed opinion is that these are solvable problems and personally I blame decades of recklessness in this field that made this necessary.
But now it is illegal, the thing that might happen is that the EU bans Chinese apps like India did.
> Plenty of other businesses won't do business with Europeans as a result.
I believe you, this is something to consider when making stricter regulations. The same happens with food imports regulations and many other fields.
Some of the business that will not be created are business that should have been created, many other will be legitimate business that will simply consider the risk of the nebulousness of enforcement too high.
One example early on was that it is now unclear whether industrial sensors are by accident in violation of GDPR because the resolution needed for industrial application is enough to distinguish different humans.
My uninformed opinion is that these are solvable problems and personally I blame decades of recklessness in this field that made this necessary.