U.S. Law Firms Must Prepare For GDPR, Panel Warns
Partner Trisha Rich served as moderator for a panel discussing EU General Data Protection Regulation (GDPR). The EU Parliament enacted GDPR three years ago to reconcile and consolidate the privacy laws of all member states, and all companies doing business in or with these states must comply. GDPR also allows EU data subjects the right to access their personal data held by an organization at any time. This change can affect all industries of business, including law firms.
Ms. Rich asked pressing questions throughout the panel. She is quoted in Bloomberg Law asking, “Does that company have an affirmative obligation to go to all the people to whom they’ve given that data,” or does the data subject have to make separate inquiries?