The European Unions General Data Protection Regulation (â€œGDPR) took effect on May 25, 2018, the California Consumer Privacy Act (CCPA) will take effect on January 1, 2020, and with 42 of the 50 different data breach reporting laws substantially changed in 2018, the US legal landscape is drastically changing. What does this mean for businesses? Uncertainty and high costs of compliance. The current regulatory framework benefits the criminals and penalizes the corporations. This presentation will discuss the impact these ever-changing regulations have on the collection, processing, and storage of data. The discussion will include a comparison of the requirements for security and privacy domestically, and the implications of the recent Pennsylvania Supreme Court decision in Dittman v. UPMC , __ A.3d __, No. 43 WAP 2017, 2018 WL 6072199 (Pa. 2018), and its potentially far reaching effects. This session will also focus on the growing divergence on a domestic and international level in the way that countries and regions approach data privacy and protection, providing insight into global data management within increasingly contrasting regulatory requirements. Finally, we will explore the benefits of a federal data privacy and security regulation and how it will substantially benefit businesses by driving down the cost of compliance.