Sadly this isn't true. While I doubt the EU regulators are going to come head hunting for companies any time soon they do have mechanisms in place to sanction companies who don't do business in the EU and the scope is clearly intended to reach where ever the data of EU natural persons is being held.
https://gdpr-info.eu/art-3-gdpr/ I asked one of the EU regulators at RSA how they intended to enforce GDPR violations on businesses that don't operate in their jurisdiction and without hesitation he told me they'd use civil courts to sue the offending companies. On Wed, May 23, 2018 at 8:36 AM, Mike Hammett <na...@ics-il.net> wrote: > If you don't have operations in the EU, you can not so politely tell the > EU to piss off. > > > > > ----- > Mike Hammett > Intelligent Computing Solutions > http://www.ics-il.com > > Midwest-IX > http://www.midwest-ix.com > > ----- Original Message ----- > > From: "Matthew Kaufman" <matt...@matthew.at> > To: "Fletcher Kittredge" <fkitt...@gwi.net> > Cc: "NANOG list" <nanog@nanog.org> > Sent: Monday, May 21, 2018 8:07:15 PM > Subject: Re: Whois vs GDPR, latest news > > On Mon, May 21, 2018 at 1:56 PM Fletcher Kittredge <fkitt...@gwi.net> > wrote: > > > What about my right to not have this crap on NANOG? > > > > > What about the likely truth that if anyone from Europe mails the list, > then > every mail server operator with subscribers to the list must follow the > GDPR Article 14 notification requirements, as the few exceptions appear to > not apply (unless you’re just running an archive). > > Matthew > >
