From the Document: "U.S. and European Union (EU) policymakers are focused on protection of personal data online with recent and proposed legislation and enforcement actions. Data breaches at companies such as Facebook, Apple, and Marriott have contributed to heightened public awareness. The EU's General Data Protection Regulation (GDPR)-- which took effect on May 25, 2018--has drawn the attention of Congress, U.S. businesses and other stakeholders, prompting debate on U.S. federal and state data privacy and protection policies."
CRS In Focus, IF10896
Congressional Research Service: https://crsreports.congress.gov/