HN will not delete your account via email or any other means.

I was told — via email — this functionality would be coming in the future, but it’s been about six months and nothing yet.

>But afaik hn does no business in the EU - so it's not clear what sanctions would be applicable.

Since EU citizens are registered users, it applies.

No. EU laws/regulations dont't apply outside its jurisdiction. GPDR will affect Facebook, Google etc. just because they are operating in EU market[0]:

"This won't apply to every U.S. business — just the ones that are knowingly, and actively, conducting business in the EU. In this vein, EU courts have the discretionary ability to determine if a U.S. company was purposely collecting EU resident data and subverting GDPR compliance."

0. https://community.spiceworks.com/topic/2007530-how-the-eu-ca...

I respectfully disagree. As you can see at [0], quote, "as [the GDPR] applies to all companies processing the personal data of data subjects residing in the Union, regardless of the company’s location [...] Non-Eu businesses processing the data of EU citizens will also have to appoint a representative in the EU."

edit: This means it applies to EU citizens regardless of where the processor is located and to non-EU citizens if they are currently in the EU

0. https://www.eugdpr.org/the-regulation.html

Yes, but I'm sure this will only be valid for big enough companies (read serving millions of EU citizens) as it's subjective what "processing the data of EU citizens" actually means. It's not realistic to expect every minor mom&pop eshop or minor online service worldwide to appoint a representative in the EU. Furthermore, enforcing these rules will highly depend on international relations as it's outside of EU jurisdiction and it can only reach non-EU companies by collaboration and signing treaties with other governments, so this means USA and maybe Canada, but I highly doubt to see companies from China or Russia etc. to be held accountable.

>Yes, but I'm sure this will only be valid for big enough companies

Not really, the wording is quote clear. As is "processing the data of EU citizens".

I doubt any minor eshop or online service will appoint a representative, they will however still have to conform to the GDPR rules.

Well, only time will tell, I just relayed what I've heard from people much more knowledgeable in this area than me. How I understand this is that if you serve many enough EU citizens, please be kind, open a branch in EU or at least send a representative, because you are de-facto doing business here. Mainly this is to avoid situations where, for example Facebook, closes its EU offices and pretend to have no EU presence (and no need to abide EU regulations) despite hundreds of millions EU citizens use their services.

Wonder how long that'll last what with the US intent on applying it's laws and regulations outside its jurisdiction.

Sure, it technically applies - but I doubt it will have any effect. Compare it to hacking across border where there is no extradition. At least until some form of GDPR is rolled into international trade treaties.

If you never set foot onto EU soil, you can safely ignore the Gdpr. You might be blacklisted by EU ISPs though.

I very much doubt GDPR penalties will be levied at individuals - even when a business entity is wholly controlled by an individual. Blocking of criminal services does seem probable in extreme cases - but so far most of Europe has been pretty lenient wrt outright censorship as far as I know. Filtering certain child pornografi content being an exception.

On a side note, the cp filter is scary - as the infrastructure implies the existence of censorship infrastructure ready for abuse in the event of a power shift.