13 things to know about the GDPR

Has your email inbox been filling up with privacy policy updates? It seems like every service, app or subscription I’ve signed up for (including more than a few I’ve forgotten about) is sending me one. And the reason is that on Friday, May 25, 2018, a new law takes effect in Europe — the General Data Protection Regulation aka the “GDPR.” If you don’t know what that means or how it affects you, read on.

1. The General Data Protection Regulation gives the European Union the power to hold businesses and organizations accountable for how they collect and handle personal data — your data.

Businesses and organizations have had two years to get ready. This wasn’t a sneak attack by the European institutions. The GDPR went on the books in May 2016, giving anyone who collects customer data plenty of time to prepare.

2. Even though it’s driven out of Europe, the GDPR impacts the whole world.

If you live outside of Europe, you’re probably wondering what a European law has to do with you. Thanks to something called “territorial scope,” any organization that deals with data of EU residents must comply with the GDPR for those individuals, which impacts global organizations like Apple and Facebook. Even though they are not strictly required, some organizations are taking a principled (and perhaps easier) approach, providing the same set of controls and protections to non-EU residents.

3. It’s filling up in your inbox.

We’ve all been bombarded with emails about updated privacy policies and terms of service. It’s (mostly) not fallout from the Cambridge Analytica scandal, it’s because organizations are getting their policies and practices into GDPR compliance. Bonus points: All those emails are a hint to disconnect from services you’ve forgotten about.

4. You already have control of your privacy in Firefox, Firefox Focus, Pocket and all our products.

Our organization and its people are rooted in in a commitment to privacy. Since we were founded, Mozilla has always stood for and practiced a set of data privacy principles that are at the heart of privacy laws like the GDPR. And we have applied those principles, not just to Europe, but to all our users worldwide. We feel like the rest of the world is catching up to where we have been all along. Read the full story about our process and policy.

Here’s more about how we put your privacy first in Firefox, Firefox Focus, and Pocket.

5. Data privacy is by design and by default.

Organizations collecting or using personal data will have to consider privacy throughout the entire lifecycle of products and services. That means that from the day teams start designing a product, service or feature, privacy must be top of mind. It also means that initial app and service settings will be set toward privacy by default so as to comply with the GDPR, and it will be your choice to change or turn them off as you prefer.

6. Policies and Terms of Service should be easier to understand.

The GDPR requires data policies to be written in plain language so you can better understand what you’re consenting to. Now is a good time to revisit the privacy and data policies of the services you use and update your settings. Here are a few to get you going:
Facebook, Messenger and Instagram
– Google: Privacy Policy update; Your Account
My Fitness Pal

7. You have the right to take your data with you to another service.

This principle of “data portability” means that you (1) have visibility into the data an organization has collected about you, (2) can move that data to a different service provider (such as a competitor) without losing the data history you’ve built up, and (3) are getting closer to being the keeper and beneficiary of your own data. How that will happen isn’t totally clear yet.

8. You have the right to be forgotten.

In addition to having the right to your data, you also have the right to request its erasure

9. Data breaches will be reported to regulators much faster.

The GDPR has a “72-hour rule” which means that controllers must report a breach to its supervisory authority within three days after becoming aware of it. In theory, you should find out more quickly as well, when there are high risks to your “rights and freedoms” as laid out in the 72-hour rule.

10. Violations will cost big.

Like, really big. In the past, penalties for irresponsible data collection and management were low enough that it was, perhaps, more profitable for big players to eat the fines. Now, however, “organizations in breach of the GDPR can be fined up to 4% of annual global turnover or €20 Million (whichever is greater).” While it’s still unclear what a “significant” violation would be, here’s how a fine could add up for Alphabet, the holding company of Google. Alphabet made $110 billion in 2017, so a significant violation against the GDPR could result in a whopping $4.4 billion fine. (!!!)

11. What’s good for users is also good for business.

Storing personal data isn’t without risk (see #9.) Stronger data and security practices decrease the risks associated with personal data collection and processing for both users and organizations. This is not negligible: in 2015 data breaches have cost on average USD 3.79 million per impacted company, without mentioning lost customer trust and public relations fallout.

12. Less data, more trust.

It’s sad but true that some organizations don’t even know what data they have or where it’s being stored, and the GDPR encourages organizations to think twice about the amount of data they collect. Plus, they need to justify their purposes for collecting it. At Mozilla, we put these principles into action and advocate for businesses to adopt lean data practices. The GDPR represents an opportunity for more businesses to be leaders when it comes to data collection by choosing to collect only what is necessary for providing a product or service, rather than casting the widest possible net.

13. The GDPR is a floor, not a ceiling.

Mozilla wants users to have meaningful controls and for there to be sensible privacy settings that aligns with users’ expectations. The GDPR provides a baseline set of rules, which helpfully lay the groundwork for more ethical approaches to data collection and processing. It’s is a step in the right direction, but the devil will be in the details for most organizations. New privacy controls, even if they technically comply with the GDPR, won’t help if they are too difficult to use and if organizations aren’t committed to the underlying principles that shaped this regulation. Still, we like that it will encourage a culture of responsible privacy, empowering the individual to have control and choice over their online experience, something Mozilla has stood for since our beginnings.


The new Firefox. Fast for good.

With 2x the speed, built-in privacy protection and Mozilla behind it, the new Firefox is the better way to browse. Get the new Firefox.

Mozilla is the not-for-profit behind Firefox, the original alternative browser. We create products and policy to keep the internet in service of people, not profit.

120 comments on “13 things to know about the GDPR”

  1. James Barrett wrote on

    No comment at this time

  2. Cyril Holbrook wrote on

    GDPR is really another means of keeping time-serving paper shufflers in the EU beaurocracy in a job. It’s cleared some clutter from my PC as I haven’t ticked all the boxes, but I’ve even had to fill in the appropriate form to receive the newsletter from my local church. I suppose it will prevent the C of E hacking the Methodists and the RC causing havoc for the Baptists.

    1. Jack Turbes wrote on

      The EU GDPR came from the rampant and blatantly negligent “thumb the nose at the public” attitudes here by the likes of Wells-Fargo, Equifax (still legally permitted to use — and obviously abuse — your data by law), Inogen, Panera’s, Lifebridge — etc., etc.. If “…the EU beaurocracy (sic) …” is kept busy by this edict, then maybe wild west America where everyone’s info. is up for grabs will derive at least some protection, if not the full benefit of GDPR.

      Take publically funded National Public Radio’s recent statement of compliance as an example. Not even NPR’s so-called GDPR compliance extends those full protections to North America — but they do to the EU! So much for “broadcasting in the public interest”!

      As this Mozilla article so adroitly points out in this excellent summary of the GDPR effects, why shouldn’t ALL aspects of GDPR apply everywhere??? As an American who lived as a private citizen in the EU for 15 years, I’ve watched this country backslide into the 19th century in public interests, health care, freedom, etc. while EU countries have steadily progressed toward modern 21st-century betterment for their peoples, including preserving their privacy and rights.

  3. Liam Healy wrote on

    Keep doing what your doing

  4. Pradeep Mahapatra wrote on

    thanks a lot

  5. Tobias Musvibe wrote on

    No comment ,just upgraded recently to a mozilla fast browser.

  6. Harry wrote on

    What is happening to all this? Do not you have another job Keep updating each time. It has become a very useless browser. firebug does not work too.

    Mr Harry

    1. M.J. Kelly wrote on

      You might want to check out this article, Saying Goodbye to Firebug:

  7. Dennis Swaney wrote on

    Ah, another refreshing acknowledgement that the EU’s decrees only apply to EU citizens and anyone who resides in an EU state but do NOT apply to citizens of these United States who do NOT reside in an EU state. Particularly, AMERICAN companies doing business with US citizens residing with in the territory of these United States, do NOT have to force the decree on said citizens. The EU has absolutely no jurisdiction within these United States of AMERICA!

    1. Aberhonddu wrote on

      Likewise the USA has no right to take action against organizations, companies or individuals living and working outside the jurisdiction of the USA who wish to continue with friendly relations with countries the USA seems to want to be at war with. The UK always maintained good relations with Cuba despite USA policies and long may this continue. I fully support USA isolationism as this will allow the rest of the world to develop peace and harmony.

      1. Justin Rich wrote on

        Admit it .. Donald Chump is doing a good job of isolating the US of A. Keep it up, pal! We, the Rest Of The World, enjoy your absence.

        1. Mike wrote on

          Really Justin? Get a grip and try to stay on topic. Thanks Mozilla for your moral compass!

      2. Some Guy wrote on

        Aberhonddu, yeah, sure. Let’s live in Pax Americana than wish for it to end. European states have been waging wars against each other long before 1776.

        George Washington himself warned against U.S. entanglement in European, and, more generally, global affairs before leaving office. Isolationism is the traditional American stance in foreign policy. The rest of the world can collapse and the U.S. can still thrive.

        1. Mark Whelan wrote on

          And visa versa.

      3. John Houterman wrote on

        Very nicely put, I only wish that the Australian Government would not follow the Americans blindly!

      4. Tim Barry wrote on

        Really!? The USA is the cause of the worlds problems! Get a life! What country provided Britain war materials during WWII before Pearl Harbor? What country came to the aid of Europe in the Great War (WWI?) What country is leading the war against extremist terrorism? What country has existed as a Republic since the War for Independence (also called the American Revolutionary War?) What country wastes more money on the UN (Useless Nothing) than any other country? What country agreed to Charles de Gaulle’s (the gall, ball-less frank) blackmail to protect the frank’s Vietnam colony, else dear charlie was going to side with the USSR? What country gave up 58, 479 or my brothers and sisters to help the hapless frank army in Vietnam?

        So Aberhonddu, just how do you define “isolationism?” Seems you don’t have a dictionary!

        So Aberhonddu, just how do you define the action of developing peace and harmony in the rest of the world? Seems that you are either not keeping up on current events, or picking and choosing todays news that suits you!

        And to Mr. Justin Rich, your comment about President Trump is “rich!” Are you still suffering for sec. of spite Hillary’s defeat in the Presidential election! If she were elected, I think we would see the world go up in a nuclear vapor, viz., Iran, Russian, China, N. Korea, and other rogue states whose idea of peace is “do what I say or die!” When, Mr. Rich, has the USA said that?

        Re. Cuba, are you people naive? Give the USSR missile bases on Cuba? I am glad the President Reagan stared the USSR down, and defeated that stain!

        Wars have gone on throughout history. If you think that nullifying the USA is going to cause peace in the world, then explain the wars throughout history before the USA existed?

        The USA is the best country in the world! It still is a shining beacon of freedoms! I pray to God that the US will maintain the beacon of freedom for another quarter century and more!

        God Bless the United States of America, and I pray You, Oh Lord, will maintain Your blessings on this dear country!

        1. Philip Fourie wrote on

          President Eisenhower warned in 1960 against the military-industrial complex (MIC) which was dominating life in the USA. The USA is still earning trillions of dollars through arms exports, and it is in the MIC’s interest to keep everybody fighting and buying.

        2. Karin wrote on

          Tim B. you left out that America also forgave all or a portion of the “War Debts” to all countries except one (and they would not allow it, paid it anyway). That is why we are now expected to support the other countries of the world. They got used to it.

        3. Y wrote on

          I agree with you Tim Barry

    2. Steven D. wrote on

      … And that’s too bad, in this case, because those protections are really what we need from the predatory practices of the corporations that increasingly dominate our lives here in the United States.

    3. Piyush Tandon wrote on

      Monsieur Swaney, you are so very right about jurisdictions. USA better not have any jurisdiction over EU.

      1. Some Guy wrote on

        Piyush Tando, the U.S. is not a member of the E.U., so E.U. laws do not apply. (Whether they are reasonable is a different story.) U.S. laws are drafted and debated in Washington, D.C., not Brussels.

    4. Helen wrote on

      I’m sorry to say that this also applies to the US. I just got a lock out from Discus……Twitter is working on it……..


      When you login with Disqus, we process personal data to facilitate your authentication and posting of comments. We also store the comments you post and those comments are immediately viewable and searchable by anyone around the world.

      I agree to Disqus’ Terms of Service
      I agree to Disqus’ processing of email and IP address, and the use of cookies, to facilitate my authentication and posting of comments, explained further in the Privacy Policy

    5. OzOle wrote on

      @Dennis Swaney
      So true, you US citizen are all safe now that you have an outstanding president, he will see to it that it all gets sorted out, so that America can again become great!
      Congratulations! From an envious non-US citizen.

      1. Yusef wrote on

        Seems like political campaign. We should stay focused on main topic instead of doing political campaigns.

    6. J. T. wrote on

      Right! You’re hung out to dry and your data is still mostly up for grabs, unlike those sheep in the EU…lucky you. Enjoy your perception of freedom and privacy, Equifax style!

    7. Octavian wrote on

      Actually, EU companies have to respect the GDPR in relation to anyone’s data not just the data of people in the EU.

      > If you’re on the Moon and you’re dealing with an EU company, your data will be protected by the GDPR.


  8. David Holly wrote on

    Don’t know what I am doing in this class, but I am trying to get better informed. THNX DGH

  9. Stephanie wrote on

    Awesome. I’m glad about this change. I also forgot several accounts and what I did was to delete the entire account. Account declutter time! 😉

  10. Colin Martin wrote on

    It’s a real pain in the A having to reply to all these requests for permission to continue memberships.

  11. Mark Collins wrote on

    I simply love these new regulations and how they give us a better sense of privacy compared to basically nothing of significance being in place before. The timing couldn’t be more perfect as it is just a month or two after the Cambridge Analytica situation.. and ofcourse kudos to mozilla for always respecting their user’s privacy ❤

  12. SHERYL FARO DAVIS wrote on


    1. Caroline wrote on

      My only problem now with TBird is why does it not remove permanently any junk mail I keep getting and having to delete time after time. Please do not keep allowing repeat junk to my Tbird as very annoying and waste of time deleting them. Other that that most of what Mozilla has and is doing helps us to be safer and informed.

      1. M.J. Kelly wrote on

        Perhaps this article will help:

  13. Brenda Crowther wrote on

    Yes, you’re right – yet another long email. I applaud those who used shorter ones.

  14. Paul Munteanu wrote on

    Many Thanks,

    Good reading

  15. Raymond Firfer MD wrote on

    How does one control the power of thought or an idea ? A tax on thinking is impossible to determine or collect unless converted to a visual documentation with storage. The harm or good from that idea or thought is measured with infinity as the end product and one is left with nothing ultimately.

  16. Doru Dascalu wrote on

    Must remain in database at Mozilla, because I use all the time.

  17. Ton Spikker wrote on

    Wil graag de updates blijven ontvangen.

  18. Katie wrote on

    Because Moz://a values privacy is why I use Firefox Quantum. Thanks for this article! Was wondering why my inbox has been inundated with privacy policy updates. I had assumed it was because of Cambridge Analytical and facebook. Glad to know it’s Europe’s General Data Protection Regulation and that it applies worldwide. The Old World is more progressive and moral than the New World.

  19. Regina wrote on

    Dziaugiuosi naudodama,, Mozilla” narsykle.

  20. Anthony m Reed wrote on

    I’ve been with firefox approximately 5yrs,another brother VET told me all about the privacy,speed, updates, forum for questions plus the big thing is keeping nosey people out of my business I’m on aV.A. site daily exchanging messages this is a very private site only for Vets,and I don’t need nose he helped me switch to firefox, for safe browsing and speed love the extension privacy badger. I don’t regret leaving the other browser behind, in the history books…sorry but they need to get up in the now and present there dinosaurs..This is a good Browser one of the BEST#1 Thanks Anthony prov R.I.

  21. Martha Duncan wrote on

    i would love to stay with your news letter i understand the GDPR

  22. Bill Branner wrote on

    Although I’m often less than thrilled with Mozilla’s too frequent changes to the Firefox UI, I have known and trusted Mozilla for far more many years than I can recall. Of all the major players on the internet today, I would vote you the most trustworthy of the bunch. As already stated, I don’t trust you to always make the right changes to your products when you start piddling and fiddling around with them, but I unconditionally trust you in matters of ethics and concern for your user base.

    For this, I sincerely thank you.
    William (Bill) Branner, President
    Hi-Tech Data Systems, Inc.

  23. J B Morris wrote on

    Thanks for the heads up.

  24. angelo caceffo wrote on


  25. Elias Kalligas wrote on

    I realize Firefox/Mozilla people deserve to be the best of all in web

  26. naserhosinof wrote on

    در باره موزیلا مرور گرهای بدون نقصی است باید باز دانلود کنم تا بتوانم بیشتر تجربه پیدا کنم با تشکر از زحمات شما عزیزان ناصر

  27. Thomas Paul wrote on

    1. Not at all. The big ones will find a way out! Only the small ones suffer!
    2. May be.
    3. True.
    4. May be, but has nothing to do with GDPR – it’s your decision. A good one. Thank you!
    5. Should be, but aren’t there other ways?
    6. I do not believe. See 1.
    7. Who cares?
    8. I have many rights – but in real practice?
    9. OK, nice.
    10. Even small ones – a big problem for small companies, NGOs etc. Congratulations!
    11. Definitely NOT! GDPR is the wrong instrument.
    12. OK
    13. “a baseline set of rules” which will cost you millions if you deviate a mm from it – even if your business is NOT data.

    GDPR is the wrong instrument. It is a law thing not a technical one. It produces only millions of tons of paperwork for JUST ABOUT NOTHING. No one will get more privacy because of GDPR. See 1.

    1. Saturday Joshua M wrote on

      Please do your best but all users have to be protected regardless of location.

  28. GEZE MEDIA wrote on

    No to thee GDPR , the consortium will review and delete this when they can if it is too far along for great founders as myself are far to busy to dive deep into the regulation false . Considering the first thing I don’t like is the basis of all of it. Totalitarianism is Europe with kings and queens .My Great Founders powers are Totalitarian only.

  29. Anne-Marie Izac wrote on

    I’ve used Mozilla Firefox for more than a decade and very much appreciate your ethics, as well as the service you provide to all of us. Many, many thanks. The online world would be a far better place if all providers had your sense of ehtics and of he public good.

  30. Tarrant Green wrote on

    GDPR is typical of the emanations from Brussels which do nothing for client service delivery, which giving a number of companies and individuals of limited ability the opportunity to fleece the unwary into following procedures and processes that the rest of us have been following since time immoral!!! (SIC)

  31. Jeff wrote on


  32. Robert Dzink wrote on

    It’s all about are bill of rights especially the 1st and 2nd,I WILL GO DOWN FIGHTING, THE AMERICAN PEOPLE AREN’T AS STUPID AS THE ONE PERCENT THINK WE ARE!! Thanks mozilla👍

  33. Lucijan Mohorovic wrote on


  34. Des Willard wrote on

    Firefox, my compliments on detailing the matter WITHOUT legal jargon. Much appreciated.

  35. todd Doyka wrote on

    i use chrome and mozilla’s firefox won’t work? what do i do?

    1. M.J. Kelly wrote on

      Might try a refresh. Here’s how:

  36. Niels Gammelby wrote on

    Update Firefox?

  37. Adebayo Emmanuel Olasunkanmi wrote on

    I need to remain in Mozilla

  38. Jorge Magalhães wrote on

    Thank you very much

  39. Niels Gammelby wrote on

    Firefox works slow and does not delete read or unwanted mails as wanted.

    1. M.J. Kelly wrote on

      Might try a refresh. Here’s how:

  40. Jean Rivest wrote on

    Je ne vois pas pourquoi vous m’écrivez en anglais.

    1. M.J. Kelly wrote on

      If you click the link at the bottom of the email you received from us, it will allow you to change your language and subscription preferences.

  41. Ivo Willekens wrote on

    The implementation is en has been quite difficult to follow and in certain cases incomprehensible (in my case: Firefoxes and Time inc) and difficult to see what is achieved… for me it is simple: I only want information when I say yes, all the rest is BS

  42. Maurice wrote on

    Firefox is good. I like it.
    Would like to see an email notification program.

  43. Paul O’Brien wrote on

    You’re doing a fantastic job with your awesome browser. Too many people are not happy unless they have something to gripe about. Fidiots.

  44. Roy Read wrote on

    I would have more respect for Mozilla if it practiced what it preaches. In your email to me (the one with the link to this page) you say “Mozilla has always stood for and practiced data privacy principles that are at the heart of privacy laws like the GDPR.”. BUT in the latest version of Firefox you know allow sites to permanently store data on my computer unless I take deliberate action to delete it myself. In previous versions of Firefox setting up ‘delete cookies on leaving firefox’ did just that and cleared everything out.
    You have taken a step backwards in my opinion.
    Roy Read

    1. Sarahmarie wrote on

      I do not see this change as a step backward in Firefox, probably because I haven’t needed to rely that option. I do have Firefox delete its cache when it closes. For cleaning out cookies, I use the freeware program CCleaner, which allows me to protect those cookies from websites that I commonly use.

    2. M.J. Kelly wrote on

      You can set Firefox to delete history, cookies, form history, etc through your Preferences. Here’s how:


    thanks a lot

  46. Dave Lambert wrote on

    You go Mozilla, making it right for the people is Job one. We’re right there with you.. Maybe it’ll straitened out the rest of the tech world…😎💨 Maybe going back to message in a bottle.

  47. Rufus wrote on

    Screw the EU, the new world order, and the UN. I live in the USA and if someone outside the USA wants to look at my website(s), they can damn well abide by MY RULES and Read MY TOS and Privacy Statements. If that ain’t good enough for them, the can go somewhere else.

  48. Kenny W. Wadsworth wrote on

    Quit letting the E.U. and NGO’s a foothold on your services. Don’t be like Google. Tell these governments and NGO’s to make their own browsers. I’m with Rufus.

  49. Nigel wrote on

    Great job Mozilla … Thats why i love your products .. Go Firefox !!!

  50. Susan Scott wrote on

    Excellent initiative. An example of how an international body is required when it comes to tackling multi-national issues such as data privacy in the face of mega-companies.

  51. Brigitte Richter wrote on

    Please, send me this mail in german, thank you

    1. M.J. Kelly wrote on

      If you click the link at the bottom of the email you received from us, it will allow you to change your language and subscription preferences.

  52. Rajinder Nijjhar wrote on


    1. CJ wrote on


      1. M.J. Kelly wrote on

        Might try a refresh. Here’s how:

  53. puneet kumar wrote on

    ok thanks

  54. Ledoux wrote on

    vous pensez que tout le monde parle et lit la langue anglaise. Ce n’est pas mon cas et il est dommage que je sois pas en mesure de vous comprendre.

    1. M.J. Kelly wrote on

      If you click the link at the bottom of the email you received from us, it will allow you to change your language and subscription preferences.

  55. Silvano wrote on

    Je suis bien hereux d’utiliser Mozilla Firevox et les services lieé

  56. WINEK MICHNO. wrote on

    Thank you very much, great job with Mozilla Firefox.

  57. WINEK MICHNO. wrote on

    Thank you very much.

  58. Max Varisco wrote on

    Questa è veramente una legge del cazzo!

  59. L’arsouille wrote on

    Dear Mozilla,

    First, please know that I am a fervent defender of freedom and that for this reason, I try to only use Firefox as a web browser. I think that you have done an outstanding job so far and I encourage you to continue in this direction. I am grateful that organisations like yours exist.

    The following is thus not so much criticism: you should much more consider it as suggestions and maybe as a list of (arguably) potential law breaches which you might want to address.
    Please note that I am no lawyer and that I might be wrong in the way I interpret the GDPR or parts of it.
    Please also note that I am an experienced software engineer, with more than a decade of web app development and design experience.

    In the context of GDPR, I think that sending “browser fingerprint” information to website servers without receiving user consent for every single website is illegal processing of data – either from Mozilla’s Firefox or from the website itself (I don’t know for sure).

    I would enjoy seeing in Firefox a feature which would allow users to avoid browser fingerprinting. I would like to decide by myself what data the browser shares and with which website it shares the data.

    According to GDPR, consent must be a positive, well described, easily understandable action done by the user. Thus, by default, sharing any data with a website other than what is strictly required should be disabled until the user specifies his consent.

    Of course, keeping proof and records of consents should also be done.

    By the way, web browsing works:
    – without sharing the list of system fonts – this is not essential and is thus subject to user’s consent.
    – without sharing the screen size and colour depth – this is not essential and is thus subject to user’s consent.
    – without sharing browser plugin detail – this is not essential and is thus subject to user’s consent.
    – without sharing hash of canvas fingerprint – this is not essential and is thus subject to user’s consent.
    – without allowing supercookies at all – this is not essential and is thus subject to user’s consent.
    – without sharing the timezone – this is not essential and is thus subject to user’s consent.
    – without sharing the Hash of WebGL fingerprint – this is not essential and is thus subject to user’s consent.
    – without sharing the platform (Linux, windows…) – this is not essential and is thus subject to user’s consent.
    – without sharing the user agent – this is not essential and is thus subject to user’s consent.
    – without sharing touch support – this is not essential and is thus subject to user’s consent.
    – without specifying if cookies are enabled or disabled – this is not essential and is thus subject to user’s consent.

    These features are often not really useful to implement web applications, and many web applications could be or are implemented without these.

    I know that this is an incredibly complicated matter, as it would mean that it would break some features of websites, but that is what is required by the GDPR.

    This kind of feature would enable users to regain control of their data (and here, it is data that most users ignore that they share).

    If any website of Mozilla collects this data, I would also recommend that you require explicit user consent before you collect it and process it in any way.

    You have my email, if you have any questions, don’t hesitate to contact me.

  60. Florida Jim wrote on

    I like Firefox and seem to have few problems I try to avoid all the social networks whom I do not trust. Keep up your good work, thank you.

  61. wafaa hosni wrote on

    please send me this email in arabic,then i can understand the 13 and i like to comment it.
    thanks for the teem work.

  62. Charles Morford wrote on

    I really like Firefox, but I can’t use it. Whenever I start a search in Firefox Google takes over. Please help me solve this Google intrusion.

    1. M.J. Kelly wrote on

      Here’s info on how to change your search engine settings in Firefox:

  63. Anshar L wrote on

    I like the Europe law. They seems to provide more value to their citizens. Hats Off.

  64. Mary Margaret D White wrote on

    All is well

  65. Alcindor Guillaume wrote on

    I thank you four concerns and good measures to fight fraud,

  66. Brian Hedley wrote on

    You are doing a great job. thank you

  67. ROCIO TORRALBA wrote on

    si, me gusta.

  68. Shodunke Ayo wrote on

    Please I need more information and education on the use of some of these browser. I am a novice. Where can I get such.

  69. Ellis Morrison wrote on

    Formidable, fearless Firefox.

    Leader of the pack.

  70. sleman alkronz wrote on

    في غاية الروعة والى الأمام

  71. Eric D. Tarkington wrote on

    Typo: Too many “fors” — the article says:

    “10. Violations will cost big.

    “could add up for for Alphabet….”

    1. M.J. Kelly wrote on

      Fixed! Thanks for the note.

  72. Eric D. Tarkington wrote on

    Whatever the user protection regulations may be, they can only be a tool or a weapon that the user can apply for self defense.

    Bottom line: My personal data is my personal property and can only be used in ways that I deliberately accept. I should not be coerced into giving up my data for any novel use a service provider or third party might concoct without my explicit approval.

  73. Slavomira Vladimirova wrote on

    Thank YOU, very much!
    Simple, useful and ethical explanations, in a human language.
    To the wonderful digital media and tools you provide!

    Yes, it is not the one and the first legal act from an authority-national and international-worldwide.

    Legal acts, in force and action,
    for humans , entities and countries,
    explicitly in their OFF REALITIES- local communities, states, countries,
    few and some of them, and all countries- involved in international activities.
    Legal acts- as rules for behavior,
    in described conditions (from their off realities),
    guaranteed, for execution ( as the law prescribe), by the sanctions.

    The WEB provides the media and tools, for every human, entity and country-worldwide- to be involved in local and international activities.
    These are great possibilities, for EVERYONE, with correlative responsibilities, on my opinion.
    Yet, there are many legal acts , national (US included) and international , about the relations on line.
    The EU regulation is timely, addressed not only to EU citizens, entities and countries, but to such-worldwide, approved by an authority of geopolitical importance.

    It was been interesting for me to read the above comments.
    My thanks to the persons, who expressed them here!
    It is obviously that I agree with some of them .

    And I like your voice in the on line discussions :-).

  74. Luis Suarez wrote on

    Mozilla es la mejor alternativa – Gracias

  75. VILLE WILEN wrote on

    This is a good progress for the privacy in the digiworld !!


  76. Nikolaos Malakis wrote on

    I agree!

  77. Martin Snow wrote on

    Thank you.
    Proceed as before.
    D M S.

  78. Doug wrote on

    This is how your freedom is slowly taken away. As far as the EU is concerned they can kiss my A**!. I don’t Live there and never will. This activity is to slowly steer everyone in the world to slowly agree to their control until you give up your rights are suddenly non existent. Lets say this simply to explain it. “Put your self in a bath tub with cool water in it and they slowly raise the temperature until you boil to death.” about the time you realize what they are doing it’s too late. Its not what this is about its about control… attention!

  79. YourTVUnplugged wrote on

    No wonder James Barret had no comment, he knew what was coming… What this was really all about. Jack Turbes, you might want to rethink that idea based on recent developments.

    Mozilla, frankly I’m a bit disappointed that this is what is linked to at the bottom of a new tab page ( seemingly presenting how great the EU is for doing this, while not giving any attention to the thing that exposes them to be evil and crooked and this being a pre-emptive strike for their next attack on privacy and freedom around the world! That being Article 11 && Article 13 described here in detail: (
    You do have a page dealing with it: but why is it not considered the most important thing to link to (on the tab page) instead of this? It’s more recent than the GDPR and exposes the GDPR for what it really is. (And it’s also lacking in detail that a person might not see it as big of a deal or what it’s even about or will it even effect them!)

    For “#7. You have the right to take your data with you to another service.” You said, how that will happen isn’t totally clear yet. It’s very clear to me… How it will happen is the EU will keep a copy of all your data, and send it to whoever you want if you want to port your data somewhere. But they will always retain a copy so I guess the right to delete doesn’t extend for the EU themselves now does it?

    With Article 11 and 13 it all becomes clear. (I hope none of you agreed to any of those emails new terms, I surely didn’t (healthy skepticism wins everytime))

    The pre-emptively wanted hands on your data (the EU) so they could more easily implement this overarching overreaching global censorship act of internet treason! You said it yourself with “#2. Even though it’s driven out of Europe, the GDPR impacts the whole world.”

    They will force companies to comply or can’t provide services for EU users just like this GDPR. Big tech companies like google and facebook will happily comply as that’s what they’ve always wanted while not wanting to openly display that they want it. (but with a little due diligence you can expose it for yourself, by testing them) So this skirts the responsibility off of them saying oh it’s not what we want it’s just what we have to comply with now sorry. LIES It’s likely they who have lobbied for this!

    I would like to see the tab page bottom, or the Mozilla homepage, or something more than just that page that no one even knows exists (unless they already know that save the internet page which defeats the point), have SOMETHING about Article 11 and 13 and how it can and probably will effect more than just EU citizens just like this GDPR does!

    If Mozilla really does stand for freedom and privacy around the world, it would be the least they could do! I believe this coincides with the attempted removal of Net Neutrality in the United States, with the GDPR and now Article 11 and 13, they are all connected in one vicious attack against freedom and privacy for the entire globe! (How?: If they are successful in their attempted removal of Net Neutrality (no blocking, throttling, prioritizing) that will pave the way for the EU blocking of links and content under the guise of copyright (just using that as a tool to achieve their censorship) and with the GDPR the EU will more easily know who’s sharing those links and content! Since they now have the data to link people to their links and content they post)

    Seriously blocking something so basic and fundemental to the internet such as links is preposterous! Defending the internet from these parasites is seeming to be a never ending game, don’t let them catch us off guard with GDPRs and other things pretending to be in our favor while they ram through malicious doctrines such as Article 11 and 13! We must stop the EU with this traitorous act, at all costs!

    YourTVUnplugged -> Unplug the TV, connect back with the real world! 🙂

  80. Luke Marzola wrote on

    Have not read the details yet, but sounds like a step in the right direction. Now I would like to see something done about international ‘intellectual property (IP)’ theft. I had 15 years of my vehicle design work stolen as copyrighted designs and some written info from a book I was about to publish about safe driving. International patenting is a scam set up for corporations, not for the creators of the work, (with costs of $40,000 to $100,000 dollars or more, just for one patent, and that’s before you even set up production), and the national level (IP) laws are controlled by governments and former government personnel who are suspected of being linked with the international theft racket. My designs where worth billions, and are being produced by corrupt engineers, manufacturers and universities around the world.

  81. upendra patel wrote on


  82. David Derbyshire wrote on

    It is a good idea, I hope it stops “phishing poeple”

  83. Thi wrote on

    This is bad.
    Computer owners should do whatever they want with their computers.
    Don’t like them, then don’t interact with them..

    Doesn’t matter what EU says, they’re wrong, although they’re behind deadly force against peaceful people.

  84. Jim wrote on

    Thank you for all that you do. Jim

  85. John S wrote on

    I found it very interesting how many privacy emails I got from entities I thought I had jettison and deleted long ago. Why do they even have my email address I thought? Even those entities who claim this GDPR has no bearing on them because they have always done right in regards to privacy, yeah right. I find it interesting that I received so many last minute discloses of these new policies for GDPR when in fact they have had two years to comply? Apparently maybe they had not been complying for those two years for a reason? These sort of things will be playing out for some time, and even if your not in the EU you will probably benefit from at least some government entity having some sort of leverage in protecting users privacy. But how much of this ends up in successful litigation for violators remains to be seen.

  86. Bruno wrote on

    Thank you Mozilla for the really easy to digest GDPR article.

    GDPR is a really good thing and for the sake of everyone and the internet as whole, more countries should adopt this.