- tech companies should de-identify customer data or not collect customer data
- comprehensive federal law is necessary
- why? tech companies that collect a lot of data are basically spies
- people should have a right in their data, and a right to have that data minimized
- consumers must be told what data is being collected & why
- the data belongs to the users and users (consumers) should always have access to it
The gold standard law: GDPR in the EU