Is there any evidence that this law is achieving the goals it was designed to tackle? If not, is there any reason it still exists? Why don't laws have to continually justify themselves as a matter of procedure?
Even a "Reject All" button is one more annoyance than I had before these laws. The dialogs previously didn't exist at all.
I'm willing to accept that some amount of personal data is being sold less, at least by some market participants. I'm still not sure how I could possibly measure even the tiniest improvement in my life, though.
I was being tracked by thousands of sites before these laws were in place and had no measurable negative impact on my life. I’m also skeptical how much practical reduction of tracking has occurred for me in the US.
What I’m 100% sure of is that the UX of the web has been made worse, and I don’t think it’s sufficiently acknowledged.
If your asking if the GDPR is effective, yes, it is.
The only ones ignoring it completely are either dodgy companies, or the clueless. The companies exercising malicious compliance are now (quite rightly) increasingly seen as dodgy and need to up their game if they want to become respectable.
You can ask companies for a copy of all your personal data they hold. There is no way this would be possible without GDPR and similar laws. In general, data controllers need to abide to some legal framework and not do anything they want.
I am not sure what OP asks. They should make their request more specific, what they want evidence for.
For example, my insurance company can no longer get away with selling my details to financing companies behind my back. Such shenanigans are no more in the UK and EU thanks to the GDPR.
Do sites stop tracking you if you reject the cookies?
Some do, some don’t.
Is the goal still valid.
Yes.