EU Data Security Reform May Foreshadow US Trends
San Francisco Mark Mao and Orange County partner Ron Raether had their article – “ EU Data Security Reform May Foreshadow US Trends”–published in Law360 on January 22.
“Last year proved to be a watershed year, as not only was the EU-U.S. safe harbor invalidated for the outward transfer of personally identifiable information of EU data subjects, but the EU also revamped its continental data security laws with the passing of the General Data Protection Regulation (GDPR),” the duo state in their opening.
“As discussed [in the article], the GDPR will make conducting e-commerce in the EU more onerous, as it likely requires substantial system redesigns and overhaul. … If the controller or processor has activities directed toward EU data subjects, regardless of whether any transaction is consummated, the GDPR alleges that it applies.” They argue that U.S.-based organization should brace themselves for the costs of many of the GDPR requirements.