Champagne. Brie. Paddington Bear. Ikea. Privacy rights. The list of things the EU exports to the U.S. is ever expanding. With its broad definition of personal data and expansive extraterritorial reach, the EU’s General Data Protection Regulation (the “GDPR”) is changing how businesses think about consumer and employee privacy globally. Is your business using cookies or pixels to collect information about visitors to your website? Shipping goods to customers in the EU? Are you a vendor to an EU business? Then you could be subject to the processing restrictions, burdensome vendor management requirements, 72-hour breach notification requirement, and fines of 4% of worldwide revenues for noncompliance. Even if your business is not subject to GDPR, legislation recently introduced in the U.S. to strengthen privacy protections demonstrates that the GDPR has already had international influence – and it’s not even effective yet.
In this presentation, we discussed “best practices” regarding the collection, storage, and sharing of consumer data are changing as a result of GDPR, and how you can keep from falling behind the curve.
- The ways in which a U.S.-based business could be impacted by GDPR
- Practical steps that your business can take in the days before May 25
- Long-term strategies to reduce the risk associated with information assets and stay ahead of the changing U.S. regulatory landscape