The protection and utilization of personal data is an highly significant issue in both the legal and technological industries. This article examines the legislative changes implemented in the EU and the United States, as well as the privacy laws established, designed to cope with international data trends, and the Personal Information Protection Act (PIPA) enacted in South Korea. It analyzes the privacy acts and conditions through comparative research methods, and studies the suitability and direction of each country’s privacy act, focusing on documents from Korea, EU, and the United States. Ultimately, legislative changes in these countries are developing in accordance with their constitutions and international privacy trends, while simultaneously confronting conflicts between their national sovereignty and the internationalized trends or development of norms and practices embodied in the EU’s General Data Protection Regulation (GDPR). We must explore new mechanisms for protecting data transmission, requiring countries to develop a concept of global public interest. This would enable personal data to cross borders, combat common threats around the world, and protect the legitimate values that form the basis of a democratic society.