The Effect of Privacy Regulation on the Data Industry: Empirical Evidence from GDPR

Guy Aridor; Yeon-Koo Che; Tobias Salz

doi:10.3386/w26900

The Effect of Privacy Regulation on the Data Industry: Empirical Evidence from GDPR

Guy Aridor, Yeon-Koo Che & Tobias Salz

Working Paper 26900

DOI 10.3386/w26900

Issue Date March 2020

Revision Date May 2021

Utilizing a novel dataset from an online travel intermediary, we study the effects of EU’s General Data Protection Regulation (GDPR). The opt-in requirement of GDPR resulted in 12.5% drop in the intermediary-observed consumers, but the remaining consumers are trackable for a longer period of time. These findings are consistent with privacy-conscious consumers substituting away from less efficient privacy protection (e.g, cookie deletion) to explicit opt out—a process that would make opt-in consumers more predictable. Consistent with this hypothesis, the average value of the remaining consumers to advertisers has increased, offsetting some of the losses from consumer opt-outs.

This paper was previously circulated as “The Economic Consequences of Data Privacy Regulation: Empirical Evidence from the GDPR.” We would like to thank Daron Acemoglu, Francesco Decarolis, Glenn Ellison, Sara Ellison, Avi Goldfarb, and seminar participants at Columbia, ASSA 2021, the MaCCI/EPoS Virtual IO Seminar, Columbia Data Science Day, FTC PrivacyCon, Yale Law Big Tech & Antitrust Conference, and the ETH Zurich for helpful comments. We would further like to thank William Nelson for his help. Krista Moody provided outstanding research assistance. All errors are our own. The views expressed herein are those of the authors and do not necessarily reflect the views of the National Bureau of Economic Research.
MARC RIS BibTeΧ
- March 26, 2020

The Effect of Privacy Regulation on the Data Industry: Empirical Evidence from GDPR

Related

Topics

Programs

More from NBER