Originally Posted by contumacious
Wow. That is massive.
I guess I will have to just block all sales to the EU on my website. The small number of sales to the EU don't justify the work needed to implement the requirements.
I am curious as to which party is the liable one for fines that might be levied against a site like Etsy if they don't comply - the artist or the site owners, or both?
Depands where the issue is, there is more then one layer. As an example Etsy set cookies or stores the private data for the login process any error there would be the problem of the company and I am sure the know it because in the past the did have a few jobs open for a data protection officer.
Etsy is seeking an experienced data protection, privacy & compliance professional to fill the role of Data Protection, Privacy & Compliance Officer. You will help build and oversee a data protection and privacy compliance program to ensure that Etsy handles personal data safely and responsibly and complies with all applicable data protection and privacy laws, including the EU General Data Protection Regulation (“GDPR”), oversight of international compliance regulations, and assisting teams with data security issues.....
However if you use a Etsy store you have to follow the same GDPR law in May because you store data like the buyers name & address that would be personal data or if someone would hack your computer and stole data from e.g. your business accounting software you would follow the personal data breach notification rules that are listed in the GDPR.
The problem is small business, depanding on your location, you could get faster into trouble. In Germany it's a sport
to issue warning letters to others in the same field if the breaking law because the competition regulations allow this and this can cost you a few hundred euros.
Now the question is, if you are in the USA and have only a Ebay and Etsy shop and breaking the EU law will the come after you, well technically the could but don't ask me what the chances are, but will you take the risk?
Here is another link, this time from the UK Government: https://ico.org.uk/for-organisations/
edit: Just one thought. I would read the new terms of services when the release it, not that the close shops that are in breach of the law because the could get fined for it.....