“We have been clear that exiting the UK does not allow an organisation to avoid responsibility for any prior infringement of data protection law, and our investigation remains ongoing.”
It’s insane. They could be fined even after entirely leaving the country ?
This law was thought up by idiots they actually got consultants in who all told them that this wouldn’t work but they decided to ignore the consultants because they wanted to implement the law anyway.
Ignore for a second the law in question. Suppose Temu started importing harmful goods into your country in the knowledge that they were going to poison kids. (This doesn’t seem too much of a stretch…) Should it be OK for Temu to just say, “OK, we’ll just stop importing to the UK then”? Shouldn’t they face the consequences for breaking the law?
I think this take is motivated by disagreement with the law in question (although it’s not actually clear exactly what they’re alleged to have done - the ICO released a statement saying it relates to an investigation from March, so before the age verification requirement).
If it’s like GDPR, it applies to the citizens currently residing in the country, the location of the company or servers do not matter. Now if Imgur doesn’t have anyone there, no business happening and the website is already blocked, I don’t think they have much leverage.
What I’m understanding is imgur could get fine even if they dont offer their service anymore in the UK.
They could go back to just after the law passed and tell them “hey you were infringing on this extremely disrupting law that would completely change your business in the UK so pay up”.
I mean if a business just decides to not serve UK customer they should leave them alone… Especially such a complex law for something like Imgur…
The law was announced a long time before it came into effect, so companies that didn’t do anything to become compliant in advance were playing chicken in the hope that it’d be repealed before they ever had to obey it.
It’s not actually a bad strategy, ultimately the law is probably going to get slapped down as unworkable and there’s pretty good evidence to suggest that they knew it wouldn’t work even before they implemented it, which won’t make them look good.
Unfortunately the courts move so slowly that none of this has happened yet and the law has now gone into effect because the timer ran out, but in theory they could have done all the work to comply only for the law never to have happened.
Practically they can’t. In theory they could complain to the United States that a US business is attempting to circumvent UK law, but I can’t imagine that having much effect at the moment.
In theory it all works because companies would be more inclined to pay the fine than to lose UK customers, in reality of course it doesn’t work because everybody would just use a VPN anyway, but the people who wrote these laws don’t know about VPNs because they think computers run on magic smoke.
Wow :
“We have been clear that exiting the UK does not allow an organisation to avoid responsibility for any prior infringement of data protection law, and our investigation remains ongoing.”
It’s insane. They could be fined even after entirely leaving the country ?
Well technically, yeah
Practically: good luck getting that money.
On the other side, does the UK now require age of for every website out there, including the millions of semi amateur porn sites?
Because; good luck with that too, that ain’t never going to happen
This law was thought up by idiots they actually got consultants in who all told them that this wouldn’t work but they decided to ignore the consultants because they wanted to implement the law anyway.
So yeah genuine idiots.
If you already have already committed a violation then yeah.
Ignore for a second the law in question. Suppose Temu started importing harmful goods into your country in the knowledge that they were going to poison kids. (This doesn’t seem too much of a stretch…) Should it be OK for Temu to just say, “OK, we’ll just stop importing to the UK then”? Shouldn’t they face the consequences for breaking the law?
I think this take is motivated by disagreement with the law in question (although it’s not actually clear exactly what they’re alleged to have done - the ICO released a statement saying it relates to an investigation from March, so before the age verification requirement).
If it’s like GDPR, it applies to the citizens currently residing in the country, the location of the company or servers do not matter. Now if Imgur doesn’t have anyone there, no business happening and the website is already blocked, I don’t think they have much leverage.
What I’m understanding is imgur could get fine even if they dont offer their service anymore in the UK.
They could go back to just after the law passed and tell them “hey you were infringing on this extremely disrupting law that would completely change your business in the UK so pay up”.
I mean if a business just decides to not serve UK customer they should leave them alone… Especially such a complex law for something like Imgur…
The law was announced a long time before it came into effect, so companies that didn’t do anything to become compliant in advance were playing chicken in the hope that it’d be repealed before they ever had to obey it.
It’s not actually a bad strategy, ultimately the law is probably going to get slapped down as unworkable and there’s pretty good evidence to suggest that they knew it wouldn’t work even before they implemented it, which won’t make them look good.
Unfortunately the courts move so slowly that none of this has happened yet and the law has now gone into effect because the timer ran out, but in theory they could have done all the work to comply only for the law never to have happened.
Why sure but, how could they force Imgur to pay up?
Practically they can’t. In theory they could complain to the United States that a US business is attempting to circumvent UK law, but I can’t imagine that having much effect at the moment.
In theory it all works because companies would be more inclined to pay the fine than to lose UK customers, in reality of course it doesn’t work because everybody would just use a VPN anyway, but the people who wrote these laws don’t know about VPNs because they think computers run on magic smoke.
How would they enforce that fine even if they decided to give one? Unless imgur banks in the UK i think they’d just tell the UK to pound sand.