The problem is the asymmetry. If the choices were «yes, but we can re-evaluate later» and «no, but we can re-evaluate later» then there wouldn’t be an issue. But especially with laws implemented at the EU level and not national level, it’s extremely difficult to get out of it after it’s been implemented. The choices are in practice, «yes, for the next foreseeable decades» and «no, for the next year».
As this very news item shows, it's not particularly easy to pass laws either; GDPR took over four years from the commission proposal to a final negotiated text.
We're now at over four years[1] since initial consultations were held and there's still not a formal consensus position in the council and the encryption bypass is explicitly excluded in the Parliament's draft, so it's not like we're particularly close to a law being enacted.
Basically the asymmetry you are describing is pretty exaggerated
[1]: https://eur-lex.europa.eu/legal-content/EN/PIN/?uri=CELEX:52...