Comment by simion314

Yes, but HIPA is like EXTREMELY limited, GDPR apples to everything not only websites, mI attempted to clarify this since many confuse GDPR with "cookie law", so GDPR can't tell web-developers how to implement the popups or buttons since is a generic thing, the law specify that accepting and rejecting should be similarly easy , if it is not then you will need to report this bussiness and it takes time for them to get fined.

I am not sure why you guys in US see those popups, the websites could just continue tracking you and sell your data.