The EU directive is aimed at data protection and includes the private as well as the governmental sector. Any company or institution that requests personal data from individuals must comply with the privacy law. The directive expressly states that companies within countries that do not have adequate data privacy protection for consumers cannot request any information from residents of the European Union. That has caused a great deal of strife between the US and the EU because the United States does not have consumer data protection laws and therefore does not satisfy the EU data protection requirement.