[fatnoah]

>Interesting that Facebook and everyone else has been knowing that these rules have been coming for years, they still haven't been ready.

There's being ready, but I think there's also some wariness that the penalties for non-compliance are so severe that it's not worth taking the risk.

When GDPR was first being proposed, I was at a startup in the messaging space, and we were in the midst of expanding into European markets. The level of effort to ensure compliance wasn't that high, but without established case law and a history of enforcement actions, it was deemed too much of a risk so we pulled back.