International and U.S. Data Protection Legislation Outlook
Setting the Stage In 2018, Europe’s General Data Protection Regulation (GDPR) set the precedent for data and privacy regulations across Europe and other geographies. Back home, the California Consumer Privacy Act (CCPA) took effect on January 1st, 2020. Other states and countries are sure to follow with similar data protection legislation. Significantly, the GDPR extended the EU’s jurisdiction beyond its borders. Thus, any business that sells to EU customers is subject to the GDPR, regardless of location. One of the broadest online privacy laws in the U.S., the CCPA regulates organizations nationwide that do business with California residents. In 2019,