The use (and misuse) of user data has only been thrust further into the spotlight, not only with new laws taking effect in many countries but also thanks to a slew of high-profile scandals, such as Cambridge Analytica. With the ongoing consequences of data breaches, people are demanding more transparency around how their data is used.
That's as true of the US as it is of any other country. And, on the back of public pressure, several states have implemented (or are in the process of implementing) regulations which share broadly the same goals as the European Union's General Data Protection Regulation (GDPR).
As these laws, and the wider data transparency movement, gather momentum, there's increased speculation around how far out the US is from adopting its own GDPR-style legislation at a federal level.
Companies need to start asking themselves how ready they are for the laws in place and how ready they'll be for any federal laws that may be instituted around data privacy.