This article appeared in Cybersecurity Law & Strategy, an ALM publication for privacy and security professionals, Chief Information Security Officers, Chief Information Officers, Chief Technology Officers, Corporate Counsel, Internet and Tech Practitioners, In-House Counsel. Visit the website to learn more.

2020 has represented a sea-change for corporate regulatory challenges. With the launch of the California Consumer Privacy Act (CCPA) on January 1, America ushered in a new era of consumer rights with the first major data privacy regulation to hit the U.S. Now that the CCPA's regulations have been finalized, with full implementation of the law beginning earlier this summer, further challenges are sure to arise for companies as they attempt to comply.

The EU has also had its share of regulatory changes, most notably with the Court of Justice issuing a decision that uprooted long-standing legal frameworks upon which thousands of U.S. companies have relied to transfer personal data between the regions. Let's take a closer look at a couple of privacy-related issuances from California, along with the European Court of Justice ruling invalidating the EU-U.S. privacy shield.