Now we will finally enforce..... Oh look, a squirrel
After the useless smoke candle called GDPR, lets welcome another direly needed regulation that seems to come against the resistance of the bad guys, only to probably be mostly lip service with neither bite nor will to bite.
As most people of the minority who read TOS, nonprivacy policies and other such license disagreements one might notice that GDPR did not help at all. The (dis)agreements were reworded but the general practice stays as onesided as ever, "accept" or "consent" to everything CulpritCorp desires or no software for you.
But hey, with all those bullshit jobs generated in yet another parasitic sect like ISO 9XXX, data "protection" whatevers are there to stay (useless).
I expect the very same of any initiative seemingly intended to do what the article says. Should anything happen at all, i expect pure lip service, another bunch of "certified" bullshit jobs generated, lots of red tape and paper waste and nothing at all in the presumed intent of the oncoming regulations.
If the farce called GDPR does not convince you, take a look at 30+ years of "Cum-Cum","Cum-Ex" or, as it was called in the beginning of one of the banking scandals around 1990 in germany "Dividendenstripping".( Olaf Scholz with his perfectly targeted amnesia might not like to remember that his friends in the Warburg bank were one of the main offenders from the start and still are today.)
All that has changed is the name and some minor implementations, the malpractice itself began in the later 80ies and has stayed on until today, despite new toothless regulations and implementation of some "watchdogs".
Plus ca change, plus c´est la meme chose.