My point is that I want everyone to be provided a clear choice - that's what the GDPR attempts to do. The GDPR doesn't actually outlaw targeted ads, it just mandates that the user is given a clear breakdown of the data being collected and how it will be used and then they can choose whether they're willing to opt-in.

By your reasoning, malware should also be legal and it's up to people to learn the ramifications of it and how to protect themselves. We should not force others to miss out on the "benefits" of malware wouldn't we?