Law360 quoted Doron Goldstein, Privacy, Data and Cybersecurity practice co-head, on some of the troubling myths surrounding the EU’s upcoming General Data Protection Regulation (GDPR). Doron noted that consent is critical, stating, “The GDPR is a compliance program. It’s not something where you can just change a privacy policy and it will work. You actually have to put programs in place and put real effort into doing that.” The GDPR includes data breach reporting requirements, to which Doron added that “there’s definitely been confusion as to the timeline for that process.” ("5 Common Myths About EU's New Data Protection Regime," May 11, 2018)