logoalt Hacker News

jongjongyesterday at 10:29 PM1 replyview on HN

Yes and my perspective is that GDPR has harmed EU startups and helped US companies by virtue of them being incumbents and having the resources to dedicate to compliance. Probably can't be fixed as easily now because of corporate culture around standards like SOC2 and ISO27001... Which I think are more harmful to security than helpful as they create complacency and hinder progress by creating barriers.


Replies

stavrosyesterday at 10:37 PM

There's a decision to be made whether corporations should be allowed to do anything they want or not. The countries that choose to let them do what they want, will obviously give them an advantage over the countries that don't.

You and I, however, are not corporations, so maybe it's in our best interest if they actually aren't allowed to do whatever they want.