Privacy & Data Protection
Doing the Right Things | Complying with International and US Data Privacy Laws and Regulations

A principles-based approach to operationalizing your compliance program to a fluid data-privacy regulatory landscape.
Many countries and an increasing number of US states have passed comprehensive privacy legislation. BRG works with clients to achieve compliance with these international privacy regulations, which include the European Union’s General Data Protection Regulation (GDPR), Brazil’s General Data Protection Law (LGPD), Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA), and Korea’s Personal Information Protection Act; the US Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA), and Federal Trade Commission Act (FTCA); state privacy laws, including the California Consumer Privacy Act (CCPA) and Nevada’s Senate Bill 220; and state data-breach notification and data-disposal laws.
Related Privacy & Data Protection Insights
- Case Study
Building Scalable, Sustainable AI Governance for a Global Telecommunications and Technology Provider
September 12, 2025 - Case Study
The ROI of Privacy: Telecom Company Achieves Multimillion-Dollar Risk Reduction
- Publication
Key Cyber and Data Privacy Considerations in M&A Due Diligence
July 31, 2025