I'm quite mystified how Facebook is going to reliably distinguish among EU and non-EU users, in order to
build separate tiers of GDPR - compliant granular, revocable opt - in
consent controls from another tier of opt - out
consent controls.
He also says Facebook must
build accountability systems to demonstrate user
consent, and develop
controls to audit third parties when they do access user data, as well as provide remedies when enforcement is needed.Â