On 29/01/2022 03:51, Shawn K. Quinn via Gnupg-users wrote: > If the server is physically in the US, administered by someone residing > in the US, is the EU really expecting US courts to enforce EU > laws/directives like the GDPR on a US citizen?
The short answer is no, of course not. The practical consequence of the GDPR's "universality" is that if you want to do business in the EU, you have to comply across your worldwide operations. For mom and pop stores, this will therefore never be an issue. But for multinational companies (Google, Facebook, etc.), this has real teeth. In particular, it means that they can't hide behind "yes we broke your rules but we laundered it through another jurisdiction so you can't touch us". A
OpenPGP_signature
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org https://lists.gnupg.org/mailman/listinfo/gnupg-users
