Centered on user consent, GDPR is a law that a lot of other countries emulated given the importance of user privacy. Brazil’s Lei Geral de Proteção de Dados (LGPD) and the California Consumer Privacy Act (CCPA) are such examples.
Some of the compliance challenges included the knowledge gap in implementation and complex nature of the regulation. Some businesses had to terminate operations simply due to the nature of their business i.e. data collection. The hefty fines (€20,000,000 or 4% of total annual global turnover) was of major concern and the compliance speed varied from industry to industry (finance and banking heading the way) and geographically.
Surely dealing with data isn’t easy. But ensuring your customer’s privacy ensures benefits in the long run.