The marketing research and data analytics industry already has a helpful example of the costs of an overly broad data privacy law in the money spent attempting to comply with Europe’s General Data Protection Regulation (GDPR). A new study tries to quantify the cost of a comprehensive U.S. privacy law modeled on GDPR and the California Consumer Privacy Act (CCPA), the new law coming into effect in the Golden State on January 1, 2020.