The GDPR does care about different “purposes”, it’s not just about the person/company relationship.
I’m not a lawyer but my interpretation of this is that consent for Google to use location data for maps doesn’t allow them to use that same location data for email.
> Consent should cover all processing activities carried out for the same purpose or purposes. When the processing has multiple purposes, consent should be given for all of them.
the GDPR cares about the rights the company asks for, how long it keeps it, does it need the rights for the purpose, does it give you an easy way to opt out of the rights collection and so forth.
If in order to not let all of Google have your location information you need to opt out of letting maps have your location information it might be a GDPR problem. Considering also that this was not a problem that people had before if indeed it is a problem now it might be taken as a wilful circumvention of GDPR.
Exactly. The consent was provided for the specific processing, not the TLD. The processing and all of those that are not incompatible with it, that it asked permission for that furthermore adhere to the requirements imposed regarding specific and informed consent in the GDPR (see Article 4, sub 11 GDPR and article 7 GDPR.
