Comment by agos
7 months ago
I got the same impression - the lack of understanding of the basics of GDPR makes them look as amateurs, not professionals trying to raise the bar for privacy. I was considering using Kagi, but this is a massive turn off.
They'll likely discover that GDPR is not that optional as soon as a customer (or a competitor with a grudge!) reports them to their relevant national privacy/personal data protection authority, after which they'll get to have a very uncomfortable conversation where they will not be able to use those arguments
It’s very simple to just not have all that much PII or customer data. At that point you can more or less ignore GDRP.
Kagi is a US company. GDPR is not a US law.
Does not really matter as long as they offer it in EU countries.
Even so, it doesn't matter unless the CEO ever sets foot in the EU, I suppose.
(Do you regularly check to make sure you're obeying laws in countries you don't ever intend to visit? No? Then why should Kagi?)
1 reply →
I think this is an interesting topic.
The scope of GDPR is clearly including businesses operating from the US, but has any company registered only in the US ever been fined by EU?
To your point: From the original post it was mentioned they created an entity in Germany (for the T-shirts).
This means they're exposed to GDPR not only indirectly by serving EU citizens but also directly by operating within the EU.