Comment by StressedDev

That is not my experience. Every US company I have worked in spent a lot of time training employees to follow the relevant laws. I have even been on teams which had to do work to comply with the European GDPR. The message I have always received is follow the law and don’t break it.