[KeitIG]

GDPR is about users, not companies/organizations.

If I’m not mistaken, it applies to all persons in the EU (not « living there », or « citizen », literally everyone one currently « in » the EU).

So this is totally possible.

[dnomad]

This is nonsense. Why spread this nonsense instead of doing a 30-second google search? Why is there so much pure FUD and nonsense about GDPR on HN?

[closeparen]

https://www2.deloitte.com/nl/nl/pages/risk/articles/gdpr-top...

Websites offer services to all countries by default; all websites are subject to GDPR, regardless of where their owners live, unless they do something like GeoIP restrictions to exclude EU citizens.

[megaman22]

GDPR is going to be a tax on software for a good chunk of time, and probably a decent source of employment for engineers, as companies wake up and realize that they now have to deal with it. Unless there specifically are requirements to make deleting user data easy, or even possible, that's probably been punted on for years in most software products.

[gerdesj]

GDPR is going to be a tax on software for a good chunk of time

Unless you are Facebook or Google or Amazon or Microsoft (etc), most reasonably responsible companies will already be very close to GDPR compliance. The regulations really are not too onerous.

"Don't be evil" might cover it ...

[taeric]

From what I've seen, I wouldn't be too surprised if some practices make this hard for some companies. In particular, mixing customer data with company data and having a practice of tomb stoning rows.

[OtterCoder]

Tomb stoning?

[themacguffinman]

Marking a database record as "dead" to hide it from view without actually deleting the data.

[taeric]

Thanks for answering! Apologies if I used a term that isn't wide use, yet.