Yes and add to the privacy measures the state sales tax collection ruling passed yesterday by the US Supreme court. The only websites that will be left are the behemoths that can afford to comply or fight in court or the spammer/fraudsters who never abided by any laws in the first place.

Interesting times indeed.

Amendment of Municipal Code Title 4 by adding new Chapter 4-402 entitled "Chicago Personal Data Collection and Protection Ordinance

FYI - I believe this PDF is the current version (pending passage / amendment) of the proposed Chicago ordinance.

Chicago's legislative tracking system link [chicago.legistar.com ]

Downloadable but not otherwise viewable. [chicago.legistar.com ]

Many (most?) US States have or soon will adopt more strict internet privacy laws: [ncsl.org...]

IMO if you are not protecting the privacy of your users, you should not do business on the internet. It's because of privacy violations that more and more US States & other countries have been pushed into creating these laws to protect people.

I blame those that collected, shared, sold, and allowed the sensitive private information of their users to be hacked and secretly used by political & marketing interests. These are the ones that caused this.

The resulting laws we see emerge are only a method of dealing with it and stopping further damage.

^^^ What keyplyr said, agree totally..and ( with apologies for quoting myself ( a in part ) from another thread )

Of course Google, facebook, twitter etc could have just not got upto all the profiling and tracking, and then the little guys would not be suffering from a law designed to bring the big abusers to heel..

Not all of the abusers were US based either by any means, right up there amongst the worst of the trackers and profilers, Criteo, a French company willing to track anyone anywhere any time, and sell your private data to anyone any time anywhere.

Know that I hate the fact that we all must now jump through hoops to satisfy lawmakers. For a long time Governments left us alone.

But we (the rhetorical "we") screwed it up by turning our users into something to be exploited. Then the data breaches and privacy violation started to happen, and kept happening again and again.

Now we have the lawmakers to deal with... and this will only get worse.

Yes and add to the privacy measures the state sales tax collection ruling passed yesterday by the US Supreme court.

+1 That's precisely the first thing that came to my mind.

They, the lawmakers, are finally getting around to understanding a little about the Internet, so it's inevitable they will start to dabble. There will be mistakes on the way, i'm sure.
My concern is that they really don't know enough to make fully informed decisions, and we'll have to live with their mistakes, costing business money.
But, yes, privacy, it's important!

June 28, 2018 California's "sweeping consumer privacy protection" law goes into effect.

[jdsupra.com ]

Sample provisions:

Consumer Opt-Out from Sale of Personal Information: Under the CCPA, California consumers are afforded the right to “opt-out” of the “sale” (which is broadly defined) of their personal information. Covered Businesses must provide notice of this right to consumers (including by providing a clear and conspicuous hyperlink entitled “Do Not Sell My Personal Information” on their websites) and must implement designated methods for consumers to opt-out (including a toll-free number and website address for opting-out). Covered Businesses must honor consumer opt-outs, and must wait 12 months before seeking re-authorization to sell their personal information.
Consumer Opt-In for the Sale of Personal Information of Minors: Under the CCPA, the personal information of minors under the age of 13 may only be sold if the consumer’s parent or guardian has affirmatively authorized (opted-in to) the sale. For minors aged 13-16, affirmative authorization is also required, but the consumer may provide the authorization.
Non-Discrimination for Exercise of Consumer Rights: Under the CCPA, Covered Businesses are prohibited from discriminating against consumers based on their having exercised rights (i.e., opting out of collection or monetization of data) pursuant to the CCPA. A Covered Business cannot refuse to sell goods or provide services, charge different prices for such goods or services, or provide lower quality goods and services because a consumer exercises his or her rights under the CCPA. However, this requirement does not prohibit a Covered Business from charging different prices or providing different quality goods or services if the difference is “reasonably related” to the value of the personal information at issue.

If your business does business with California residents, even if your business location is outside of California, you are obliged to follow their law.

There will be no end. Only "improvements". Legislators love to one-up each other = "greater protection" = so they have an issue to campaign on. "I, Dumpety Dumpster, protected you! I wrote the law requiring . . . "

Operator? That collects data? That sounds like services like adsense and analytics. I am not the operator website of this information no am I collecting the data. They are