If you have customers or employees residing in areas such as California or the European Union, you are on the hook to comply with some of the toughest new data privacy regulations introduced in recent years.
Individual privacy and access to information has always been a highly regulated area of business, particularly for health care providers or law offices, but now every company that stores personal information about an individual faces huge fines if they don’t comply with updated regulations.
The EU’s General Data Protection Regulation (GDPR) and the California Consumer Protection Act (CCPA) are some of the strictest individual rights regulations out there right now. Many US states are copycatting them, such as New York, which proposes to make it possible for individuals to sue companies for privacy violations.
Check out this flow chart to see how you might be on the hook for these regulations.