Gianni Dell’Aiuto
Part III of III of a Special WBN Series
Gianni Dell’Aiuto | WBN News Nashville | May 9, 2025
The GDPR investigation into Lusha Systems Inc. isn’t just a European affair — it’s a wake-up call for U.S. companies worldwide.
The notion that European privacy laws only apply if you open an EU office is dangerously outdated. If your services are accessible to European users, even passively, you're already under the jurisdiction of the EU’s strict data laws.
That includes using EU personal data for AI training, selling software, or even running a chatbot online. With the AI Act tightening data regulations further, the risks are growing. Companies ignoring this global reality risk more than legal fines — they risk their reputation.
Adopting GDPR-like standards is no longer optional. It signals that a company values trust, transparency, and ethical responsibility. In a world where data is both the most valuable and most abused commodity, privacy compliance isn’t a cost — it’s a brand asset.
Lusha’s case shows that the EU is serious. Every American firm handling EU data should ask: Are we ready? Because for European regulators, “across the ocean” is just one click away.
Tags: #US Business GDPR, #Global Privacy Laws, #Lusha Case Lessons, #Data Strategy Europe, #Trust In Tech
Gianni Dell’Aiuto is an Italian attorney and expert in legal risk management, data protection, and digital ethics. Proudly Tuscan, based in Rome, and able to work worldwide. With over 35 years of experience, he advises companies on how to navigate complex regulatory frameworks such as the GDPR, AI Act, and NIS2. He is the author of multiple books, including Homo Googlis, and a regular contributor on legal innovation and digital rights. Gianni is committed to helping businesses turn compliance into a strategic advantage in the global marketplace, and to supporting communities and individuals in building digital awareness and responsibility. Click here for more information on his website
Editor: Wendy S Huffman
Sources: Italian Data Protection Authority, EU GDPR & AI Act, Meta fine case, Contributor Gianni Dell’Aiuto
Members Discussion