How California’s New Consumer Privacy Act Stands to Impact Business

At midnight on May 25, the European Union’s General Data Protection Regulation (GDPR) became official and enforceable. Companies around the world that conduct business in Europe rushed to share revised data privacy terms of services with customers prior to that deadline. The law literally transformed the way commerce is managed around the globe. Companies now have to be much more transparent about where data actually lives, how data is accessed and protected, and, when data is breached, how they plan to remedy those breaches. As a result, other jurisdictions–especially those with multinational corporations that do business in the EU--followed the GDPR lead with their own regional regulations. California passed its own Consumer Privacy Act of 2018 a month later, on June 28.