[_dczq]

I took the argument to mean that it is better to regulate bad things in a way that might be ham-fisted, but allow for future improvements than to do nothing about a known problem.

The idea people seem to be repeating is that this will be ineffective. It seems to me that GDPR provides a pretty strong framework to learn from and build off. Europe effectively launched version 1.0, so now we can implement the best parts and eliminate or improve the weakest parts. We aren't starting from scratch or searching in the dark.