The problem with data protection is not that we don’t have a suitable scheme in place to protect individuals, but that too many sites either don’t care about the customers whose data they collect, or they simply can’t be bothered to set up a good customer service.
I sent them an email telling them I’d found them out, and they had the cheek to reply they do not sell data, they only send out emails in their own name (not one of the spams mentioned them at all) and when they do emailusers they always provide an unsubscribe option. I mailed them back telling them they were lying and they haven’t replied.
In the first example, the website’s behaviour is simply unscrupulous and despicable, and in breach of UK data protection law, although they are based in Canada. In the second example, the website simply has not offered the full facilities required by data protection laws and allowed me to stop them selling my data. Forget the law for a moment, all companies storing and using customer data commercially have a moral obligation to act fairly and responsibly and, always, to give the customer every opportunity to control how their data is used. Customers will respect you more for it and be worth a lot more in the long run.