In the last few years, data privacy laws and regulations have been big news. Much of the coverage—including one of our recent blog posts—concerned website compliance. Companies scrambled to post notices and forms on their websites to satisfy the requirements of the EU’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). While the details vary somewhat, those notices and forms advised consumers that they had the right to make specific requests about their personal data.