I am a technical person living in EU and changed my mind about GDPR and the upcoming laws like AI Act and CRA, now thinking it is embarrassingly stupid trying to achieve any means of personal privacy that way.
Let alone Mozilla (non-EU) and browser extensions (like ublock) did more for personal privacy than any of the aforementioned laws. And in contrast to creating a "level playing field with Big Tech" they made tech business in the EU a morass of legal insecurities for small businesses while big corps are still happily intruding individual's privacy in ways that our current legal system cannot even cover.
How so? GDPR has done so much for personal privacy, I can't see why you would think it's stupid. It's been a pain to implement when it was introduced, sure, but since then it's pretty much become routine and privacy has become a key value of nearly all (EU) tech companies.
Let alone Mozilla (non-EU) and browser extensions (like ublock) did more for personal privacy than any of the aforementioned laws. And in contrast to creating a "level playing field with Big Tech" they made tech business in the EU a morass of legal insecurities for small businesses while big corps are still happily intruding individual's privacy in ways that our current legal system cannot even cover.