Archives for posts with tag: EU General Data Protection Regulation

I’ve written about the about the European Union’s (EU) General Data Protection Regulation (GDPR) several times over the last few years. It makes sweeping changes in the way global companies have to protect consumers’ personal, financial and medical information. It goes into effect today so U.S. companies are scrambling to comply.

Why? Because one of the most significant changes is that the GDPR applies to U.S. based companied that meet the various outlined criteria. Why is this so important? Because these U.S. companies are now updating their privacy policies to try and meet the GDPR’s requirements — so the privacy updates will also apply to individuals in the U.S.

The good news is that this potentially means stronger protections for individuals in the U.S. who engage with these companies and/or their websites. The slightly bad news? It makes it even more essential that individuals read the new privacy policies that they are receiving via email or even hard copy.

As I’ve written in prior blogs, the EU General Data Protection Regulation (GDPR) is going to impose significant privacy and security requirements on U.S. companies that might fall within its reach. I was recently interviewed by Allison Proffitt, an editor and reporter for several health related publications.

One of the significant implications that I raised with her is the GDPR’s impact on U.S. based clinical trials. She quoted me at length in her recent article about this very issue. Her October 24th article is titled “What Europe’s New Privacy Regulations Mean for US Trials” and can be found at

I just spoke on the European Union’s General Data Protection Regulation (GDPR) at the end of June on a panel at the Drug Information Association’s Annual Meeting. The GDPR¬†goes into effect on May 25, 2018 and has significant implications for many U.S. based businesses.

The impetus for the GDPR stems, in part, from the recognition that current and emerging technology means more globalization of individual information and data — and more consequences for consumers from that.

That globalization of data has been long recognized by the Federal Trade Commission (FTC). The FTC and other consumer protection agencies from 60 other countries recognize that scammers have the means and will to target consumers world-wide. So the FTC and these other agencies have created the International Consumer Protection and Enforcement Network (ICPEN). Consumers who think that they are, or may have been, a victim of an international scam can go to the ICPEN website ( and file a complaint.

The FTC has posted a very informative article about the ICPEN website and these international efforts (; “FTC and Other Consumer Protection Agencies Unveil Updated Website for International Consumer Protection and Enforcement Network”; June 30, 2017).

The world is becoming smaller all the time. So consumers need to know about the ICPEN resource.