Privacy rights, once more obscure, are now common topics both within and beyond legal circles. The European “right to be forgotten” is at the forefront of these discussions and it raises certain questions. What are the individual “data subject” rights under the E.U. General Data Protection Regulation? And why should U.S. organizations care? In this guest article, Frankfurt Kurnit partner Tanya Forsheit reviews the GDPR’s application to U.S. organizations, explains “data subjects” and “data subject rights” under the GDPR, and addresses how requests by E.U. data subjects to exercise some of their new rights might surface here in the U.S. and impact the daily lives of corporate lawyers and customer service departments. See also “Five Months Until GDPR Enforcement: Addressing Tricky Questions and Answers” (Dec. 20, 2017).