Comment by koheripbal

5 years ago

A company in the US has no legal obligation to pay fines in the EU. There is no ability to enforce these rules on US companies.

Also, individuals traveling to the EU will never be liable for the fines of their company.

Our company just completely ignores GDPR - and I suspect no one will ever care.

2 comments

koheripbal

Reply
atq2119  5 years ago

It sounds like you do some tracking, but don't do business in Europe. Okay, fine.

Do you do only your own tracking? Or do you directly or indirectly sell Europeans' personal data to other companies, who in turn may be doing business in Europe?

You can probably see where I'm going with this: those other companies may then potentially be liable in Europe for improperly handling Europeans' personal data. If I was buying personal data from US company as a European, I would make it part of the contract that the seller must comply with GDPR at least for Europeans, to avoid this potential liability.

  • koheripbal  5 years ago

    You are speaking very speculatively about facts that cannot ever be demonstrated to any EU court. ...so the point from our perspective is moot. There is no legal risk, because there is no method of detection of a violation, and no method of enforcement.