extraction by whom? i dont buy that. i have "downloaded my data" before and it never includes any kind of analytic marketing inferences they have made about me, only what i have done on the site, and they know i dont live in the EU. i assume pretend GDPR compliance is just a handy excuse thought up by marketing, killing two birds with one stone. im sure i heard at least one absurd marketing claim that it was to "let you take control of your data."
> it never includes any kind of analytic marketing inferences they have made about me
I'm not an expert by any definition, but I would bet the reason to that is the market inferences are a result of the data they provide you, and isn't an independent datapoint, but rather an extrapolation of what they've collected.
Therefore, it could be argued that the marketing information isn't classified as something to provide.
Don't know how correct I might be, I'm just playing devil's advocate out of intellectual interest.
> i have "downloaded my data" before and it never includes any kind of analytic marketing inferences
Because they are not obligated to give them to you. They are probably not even in the same systems.
> and they know i dont live in the EU.
So what? They have the ability, should they revoke it based in the IP? Why? It's a selling point, without any additional price or harm for the company.
the data downloads i have done (that could be done by anyone with my unlocked phone and logins, such as US border forces) clearly do not even try to adhere to most of the clauses there (e.g. recipients of the data). tech companies dont try to apply GDPR outside of EU, but they are generally happy to give information to the police in all countries except china. i wonder if the chinese can download their data?