Ask HN: Why did the GDPR update turned into a huge wave of SPAM emails?

4 points by bsvalley ↗ HN
How could we avoid that for the next GDPR update?

6 comments

[ 4.3 ms ] story [ 19.2 ms ] thread
Not sure. It's wild to me how many companies were sending me emails about GDPR, as if they didn't already know I lived in the US.

If you're tracking me, might as well actually use the data.

My understanding is what matters is if you are a EU citizen, not where you live. So they'd need to know you aren't an EU citizen.
Hypothetically, how would a friend who lives in the US and happens to still be EU citizen be able to sue for GDPR violation? would there be any financial benefit involved?
They would only be able to sue if the processing occurred in the EU, according to the national law of the country where the processing occurred. Citizenship is not relevant; a U.S. citizen is entitled to the same benefit.
Thanks. I was wondering why people have been claiming that EU citizenship is a sufficient attribute to trigger GDPR.
What matters is where you're currently located, not what citizenships you hold. Refer to GDPR Article 3, Territorial Scope. There is no mention of citizenship, only whether the subject is "in the Union". It's no different than how laws work in the physical world: you are protected by, and abide by, the laws of the country you're presently located in, not the country you were born in.