In the wake of numerous high-profile data scandals, and the 2018 passage of the GDPR, the strictest set of data privacy laws in internet history; consumers now have rights when it comes to their online data. But that doesn’t mean they know what those rights are or that US companies are ready to disclose and protect them. Data privacy is set to dominate headlines again in the coming months with the CCPA going into effect in January 2020. Like GDPR, CCPA aims to protect users’ personal data by regulating its collection and use. It’s not only California that aims to implement new U.S. data privacy laws — New York, Vermont, Maryland, Washington and multiple other states in the U.S. currently have or are deliberating data protection laws of their own.