Comment by atq2119
5 years ago
It sounds like you do some tracking, but don't do business in Europe. Okay, fine.
Do you do only your own tracking? Or do you directly or indirectly sell Europeans' personal data to other companies, who in turn may be doing business in Europe?
You can probably see where I'm going with this: those other companies may then potentially be liable in Europe for improperly handling Europeans' personal data. If I was buying personal data from US company as a European, I would make it part of the contract that the seller must comply with GDPR at least for Europeans, to avoid this potential liability.
You are speaking very speculatively about facts that cannot ever be demonstrated to any EU court. ...so the point from our perspective is moot. There is no legal risk, because there is no method of detection of a violation, and no method of enforcement.