He's totally right imho, but to defend the GDPR at least a bit: It does have the concept of "consent" so that data should only be collected if people agree to it being collected. However, I still have my doubts that it works like that in reality for several reasons:
- Too many websites place tracking cookies first and then let you disable them
- Too many apps use some kind of analytics without any consent
- The GDPR has different mechanisms to give companies a "legitimate interest in collecting data". How this is enforced is kind of unclear.
- The GDPR issued fines in the past, but what's gone is gone. It maybe helps that companies stop collecting more data in the future after they were caught, but you, as an individual, are still screwed.
So, the only way indeed is to stop SOME data collection in the first place and do it yourself. And you certainly can forget cookie banners and all that junk. Only thing that works is:
- don't sign up to abusive services
- use tracking protection on the web (uBlock Origin)
- possibly use something like pi-hole to prevent tracking for all your devices and apps
But of course, this doesn't stop data collection where you really have no choice but to agree to something.
Edit: Clarification
But yes, until the situation has stabilized and someone has gotten very badly hurt from a financial perspective, the only sensible thing is to block non-HTML content by default and only whitelist the stuff you actually want to run.
Then who but academics--or maybe graduate students--can read War and Peace, The Man Without Qualities, In Search of Lost Time (or really, most of its constituent books), Moby Dick, etc.?
And I can imagine being "partial" to calling myself a reader, but "amicable" seems the wrong word.