Or just ban this kind of data collection. Is there any reason anyone would willingly click "Accept" when a website asks to share your data with 500+ partner sites?
replies(10):
If the data is being sold, it should be legally required to word it in that way. If there's even the slightest possibility of your data being leaked to spammers, it should be worded to reflect that.
"Do you consent to us selling your data to any party that wishes to buy your data? Do you consent to the possibility that your data will be used to spam you or steal your identity in the future? Yes/No"
If I go to an ER in a different area (read different medical system) I want my doctor to share personal data. I don't want my doctor to share my personal data with a random doctor in the same medical system unless that other doctor is an expert being consulted on something about me. (that is just being a doctor doesn't give you access to my private information, it needs to be on a need to know).
The above is the obvious case. There are likely other cases that are not obvious where after looking closely private information should be shared. Advertisement is never one of those reasons though, and analytics is only a reason if they anonymize the data with prison terms for mistakes.
Indiscriminate sharing of personal data IS banned under the GDPR.
If you collect personal data, you must only collect it for the stated purpose and can't sell or share it for any other reason.
I continue to be astounded at the ignorance some people have of the GDPR; a vital privacy law and one that is fundamental to modern data use and respect for the customer.
https://ico.org.uk/for-organisations/uk-gdpr-guidance-and-re...
People don't want this, so there is a quick reversion to "pay with your data".
> Hey, please send the shipment to my customer. No, I can't tell you the address, it's personal data.
Some data sharing will always be necessary. What needs to be banned is the unnecessary sharing, but it's hard to 100% define what counts as necessary