I think that HTTPS, the (annoying) extra checkboxes in most forms, and a new privacy policy is a sufficient demonstration of good will. At least small companies don't have the reverse burden of proof. Here, it seems to me that any abuse must be proven by an external, one that doesn't have legal access to "my" systems.Cyforce wrote:[...]if you use a website based on wordpress and using a security plugin like WordFence - right now it would violate the GDPR law, so in some ways/points it`s also kinda wait&hope that they will be fixed in time, next to the negative point that you probably have to giveaway many functions or possibilites in your current settings (especially on social network base).
In that sense, I personally give little weight to such nerdy, internal details.
I also remember well a German regulation from about a decade ago, forbidding to memorize IP addresses. What happened? Everybody ignored it (I worked for SAP back then, and they did of course), until authorities realized how stupid the idea was. I remember the panic back then, and nothing happened.
(German)
https://www.heise.de/newsticker/meldung ... 54157.html
Entrepreneur friendliness has a higher priority than publicly admitted (even in France lol). Some say it's likely the only binding force behind the EU.