While some European users complained about being blocked from accessing their social media accounts or certain U.S. sites Friday, others heralded the changes as a milestone for Internet privacy in Europe and around the world.
What has changed for users?
Individuals in the European Union have a right to know what data are collected about them and why, how long it will be stored and how it will be processed. Users also have a right to have their personal data deleted in certain circumstances. They also need to have the option to be able to appeal to the human decision-makers behind algorithms.
Organizations need to obtain active consent from individuals before collecting data in many circumstances and are obligated to report data security breaches to authorities within 72 hours.
Why do U.S. companies have to comply with those rules?
Governments can fine organizations up to 4 percent of their global revenue for noncompliance, including for failure to process data lawfully, for not having a data protection officer and for security breaches.
Timely, incisive articles delivered directly to your inbox.