The LA Times, Chicago Tribune, New York Daily News, Baltimore Sun and Orlando Sentinel websites all displayed the same message saying they could not be accessed.
Schrems said, however, that Instagram, a photo-sharing network popular with younger users, and encrypted messaging service WhatsApp - both owned by Facebook - also use pop-ups to gain consent and bar users who refuse.
Breaches of the new privacy laws can result in fines up to 20 million euros or 4 per cent of global revenue, whichever is higher.
European privacy regulators signalled that they were ready to flex their muscles but were not "sanctioning machines".
The new EU-wide data protection rules have become applicable after a two-year transition period.
Thanks to GDPR, you will also now have a much better insight into the astonishing amount of data companies hold on you.
"It's a gradual and not a revolutionary kind of thing ..."
The changes will give people more control over their personal data and make it easier to access it. This, coupled with a general increased awareness of data privacy rights, will mean that consumers are likely to expect companies to show greater regard for data privacy and protection. "Over the last 18 months, we have taken steps to update our products, policies and processes to provide users with meaningful data transparency and control across all the services that we provide in the European Union".
The advocates of the companies, for example, could argue that this data is necessary for Facebook and other companies to earn their advertising revenues.
Why do US companies have to comply with those rules, too?
Organizations need to obtain active consent from individuals before collecting data in many circumstances and are obligated to report data security breaches to authorities within 72 hours. On Thursday, Google said it would potentially change some of its new GDPR-inspired policies if European authorities revise their instructions about what constitutes compliance, according to meeting documents seen by Reuters. I've known about the DPA for quite some time now and my interest on this skyrocketed after EU's GDPR came into effect recently. The experience will ask you to review how Facebook uses your personal data across a range of products, from ad targeting to facial recognition.
The right to restrict processing - Customers will have the right to "block" personal data processing.
European Union data protection authorities said individuals should be able to transfer data provided by them but not "derived data" created by the service provider such as algorithmic results. Alas, no. There are plenty of fly-by-night operators who do not care about GDPR, and some local companies with no business in the European Union will likely continue to pester you.
The right to object - This allows customers to object to their data being processed.