As data protection is widely linked to and recognized as a national security issue, governments of the main economies (United States, European Union and China) have already implemented or are planning to implement various data protection measures. These data protection measures usually impose penalties and/or sanctions on non-complying entities; some would even disqualify the non-complying entities from the eligibility to do business in certain jurisdictions. To counter the changing picture of data protection in terms of risk management, it is vital that business managers be informed of the effective rules as well as the coming legislations of data protection. This research aims at collecting data regulation legislations in the U.S. and examining the trend of data protection policy. The research is dedicated to providing a summary of the related information to serve as an important reference for business managers.