The GDPR imposes specific obligations on data controllers and data processors. US- based companies may be directly subject to the GDPR given its scope, and it is possible to be directly subject to the GDPR as a service provider located in the United States with no EU customers.
The GDPR authorizes EU regulators to impose massive new fines and it provides individuals in the EU with enhanced, enforceable rights for damages. Also, it significantly impacts the compliance work of US companies that store or process EU personal data, as well as their vendor arrangements, subcontracting, data preservation, and documentation. This session will explore all of these issues and more.
CLE credit: CLE credit in CA, CT, FL, IL, NJ, NY, PA, TX, and VA is currently pending approval. CLE credit in CT and NJ is via reciprocity.