Russia's internal "security" apparatus proposes to require all web
sites in Russia to store visitors' geolocations and "payment
information" to give to the state later.
It is not clear to me whether this would require all web sites to
_collect_ that information, or only require them to store it and hand
it over if they collect it.
In the US, large companies record this information if you ever
transmit it to a site which uses it. I don't want those companies to
get such data about me. Fortunately my free browser, IceCat, does not
know or send my geolocation, and using the Tor network prevents sites
from figuring out from my IP address.
As for payment information, most sites impose use of nonfree
JavaScript code in order to pay (fsf.org being a happy exception), and
I refuse to run that. For that reason, in addition to my privacy, I
never pay for anything over the internet. Never!