What does that even mean? Where did you get the 90% from? Do you have a list of said sites? Not abusing privacy according to whom?

Well abusing privacy is a punishable crime here, so according to our courts - do you say you don't trust the courts of a western, functioning, EU member country? The figure is definitely way higher than I said since only a handful of website operators have been found guilty ever since the law is active. The law is not an exhaustive list btw.

> Do you have a list of said sites?

You are the one who claimed that all sites required to implement GDPR are privacy abusers. Do you have a list? In my country we adhere to the concept of "innocent until proven guilty" and we don't keep lists of innocent websites.

So it should be really easy for them to implement.

I had to implement it and it is definitely not easy for me. It involves e.g. setting up, collecting, reading and reacting to snail mail.