GDPR is bullshit. You want privacy, then turn to privacy-oriented protocols. Anonymous cryptocurrencies, things of that nature. Until then, every GDPR popup makes me want to take out my anger on the legal profession. The web used to be open and free. You've turned it into a miserable experience.
As an app developer, my privacy policy is: "I promise not to be an asshole with your personal data". Here, you don't need to spend hundreds of thousands on legal advice.
Oh and the thing that caused me to just lose it just now is receiving another email "we've updated our privacy policy" by email.
I agree it's very cumbersome to comply especially as an indie hacker or small company.
But as a citizen I am happy there is a counterweight to the Googles and facebooks of the world, which would otherwise be even more violating your privacy. So the idea is good, implementation could be improved.
PS pragmatically speaking there is very little enforcement for small fish, so as long as you aren't really nasty/evil it is pretty unlikely that something will happen.
That's what companies do. Without some legal requirements attached, words are just words.
GDPR is not just about showing a cookie. It has multiple things included, which really empowers the regular folk with their data:
If they fail with these, they get hit with fines. I already used this to push back against spammer companies who had my email/phone number from who know where. And the moment you specify GDPR they all start to be very humble and appologetic.
A privacy policy page of a website can be one of the most important pages for users to find contact info for a company. I do not trust websites that don’t have a privacy policy page.
I am also tired of closing popups everytime I open a website
I blame the surveillance capitalists for this, not the lawyers and bureaucrats. Sure, the new legal frameworks are horribly clunky, but they're trying to steer a huge ship that's been headed in the wrong direction for years now.
When our ISPs feel like they're entitled to track our online activity and sell the info to data brokers, I can't be too mad at the people trying to stop them.
The way to combat surveillance capitalism is through technology. Instead of forcing hundreds of millions of website owners to implement GDPR popups, they could have mandated browsers to disable cookies, promote the use of VPNs, things like that.
Super duper frustrating. It's to make sure that people's data can remain their own as there are many bad actors out there. Sadly the current solutions were clearly made by people who had no idea what the web was and certainly without enough consult to everyone impact. Lawyers be lawerying.