After two years of anticipation, the GDPR became effective on May 25, 2018. Was your company ready? Survey data showed that a majority of U.S businesses subject to the GDPR were not ready, and are still not compliant. What have EU Regulators done relative to enforcement since May? It is not too late, as EU Regulators will be looking for on-going compliance efforts with an emphasis on transparency and accountability. Over the last two years, what influence has GDPR’s extra-territorial scope had on proposed domestic federal and other existing state legislation? In 2017, the New York Department of Financial Services enacted its Cybersecurity Regulation. In 2018, California enacted its Consumer Privacy Act (CACPA) effective in 2020. Like GDPR, both state regimes regulate businesses well beyond their borders. After nearly two months of intense conversation and public commentary, California has published its amendments to the CACPA in late August, which clarifies certain definitions, exemptions, and other details. Businesses should re-evaluate compliance with GDPR, and plan now for CACPA compliance in 2020. This program will provide information on the following: - What can be learned from EU Regulatory actions under GDPR to date - What EU regulators will be looking for in on-going compliance efforts - What impact, if any, has GDPR had on recent domestic regimes? - How to catch-up on GDPR compliance, and prepare for CACPA compliance