Earlier this month, the U.S. Chamber of Commerce submitted a 10-point plan which seeks, among other things, to limit consumer lawsuits for data breaches. The Chamber reasons that money spent on litigation drains businesses of funds that could be used to prevent data breaches. True enough, if only the savings were earmarked for that purpose.
Meanwhile, USA Today reports that Google and AT&T want to craft federal law as a defense against California’s GDPR clone. This is a familiar strategy. Big companies doing business in thousands of U.S. jurisdictions prefer one strong, federal law to a patchwork of state laws, whether it’s about taxation or other regulatory schemes.
A very snarky DEF CON session this summer revealed the GDPR as a hybrid of conceptually sound consumer protections and a big bundle of expensive mandates for business. LPP wondered how the presenter expected to win cooperation from American business while portraying American business persons as greedy pigs.