> Companies will just violate it anyway and get a small fine.
Which is precisely why the GDPR's enormous maximum fines are a good thing, in my book. Minor and unintentional violations can be treated with leniency, but a large organization that's repeatedly and deliberately compromising the privacy of millions can wind up paying for it in an actually noticeable manner.
Which is precisely why the GDPR's enormous maximum fines are a good thing, in my book. Minor and unintentional violations can be treated with leniency, but a large organization that's repeatedly and deliberately compromising the privacy of millions can wind up paying for it in an actually noticeable manner.