Lesson 9: Common Pushbacks and How the GDPR Responds

There are many objections builders raise about GDPR. “It’s technically impossible to comply.” “We don’t store KYC data.” “Wallet addresses aren’t personal data.” “It’s all encrypted, so it’s safe.”

The GDPR and the EDPB have answers to all of these. Impossibility isn’t an excuse. Lack of KYC doesn’t mean no personal data. Wallet addresses can be personal data. Encryption isn’t anonymity.

In short, if you process personal data, even in a decentralised way, you still need to comply. The law is tech-neutral and expects builders to innovate within its bounds.

Reading: EUCI GDPR Booklet – Clarifications, Summary;