> i am not sure why everyone wants federal laws for everything
I'm not sure why anyone wants to be held to 50+ different and conflicting privacy and data protection requirements just to have a website or provide a service online because that's what we'd be getting if we left online privacy regulation up the states.
I dont, I want to be held to the standard of my State, for which I would have more control over than the federal government's one which is often influenced more greatly by states like NY, CA, TX or FL none of which I reside in an have no desire to live under either extreme's of those states
> I dont, I want to be held to the standard of my State,
that's not possible for people who do business with people who live in other states. If I make a website in Ohio I'm responsible for following Florida's laws on how I handle data collected from Florida's citizens.
If you never create a business or service that anyone from any other state or country uses you'll never have to worry about compliance with their laws, but most of us want to build things for more than just the people in our immediate surroundings.
>>If I make a website in Ohio I'm responsible for following Florida's laws on how I handle data collected from Florida's citizens.
Why? For decades in the US we have had the concept of "Nexus", and just because a person visits your website in Ohio from Florida does not you have a Nexus in FL to where you need to follow FL Law
Just like today if I put up a website, and a person from the EU visits it, I as a US Citizen with no business interests in the EU have no obligation to follow GDPR or put up cookie notices or any other EU Laws
Because the alternative is that businesses do for data privacy the same thing they already do for things like manufacturing and corporate taxes. That's even worse.
It's a lot easier for big business to control a single state government than all fifty of them.
> Just like today if I put up a website, and a person from the EU visits it, I as a US Citizen with no business interests in the EU have no obligation to follow GDPR or put up cookie notices or any other EU Laws
You'd possibly have an obligation under GDPR, but you are free to ignore that and face the consequences. Same with laws passed in other states. You're free to ignore them so long as you're fine with what ignoring them will cost you. If you enjoy being able to conduct business in and travel to places outside of your state it's probably a good idea not to violate the laws of those places.
I'm not sure why anyone wants to be held to 50+ different and conflicting privacy and data protection requirements just to have a website or provide a service online because that's what we'd be getting if we left online privacy regulation up the states.