If you regularly do business in the EU (European Union) then you are probably well on your way to making sure your website and data collection practices are going to GDPR (General Data Collection Regulation) compliant. Coming in May 2018, the GDPR will bring about the greatest change to European data security in 20 years. If you’ve only been following the headlines, you’re probably aware of the “right to be forgotten,” 72-hour breach reporting, stronger consumer consent and high fines.
So back to a U.S. based site – why do we have to care? Well, if you are specifically targeting consumers in an EU country, have the language or accept the currency of that EU country, then you will need to comply with the GDPR next month.