Internet of Things or IoT refers to the inter-networking of machines, digital devices, vehicles, buildings, and other "connected" or "smart" items embedded with electronics, software, sensors, actuators, and network connectivity, which enable these items to collect and exchange data. Each item can be uniquely identified through an embedded computing system but is able to interact within the existing Internet structure. A recent article we published here looks at some key global IoT technology trends as the technology moves beyond its infancy and into critical areas that will affect all our lives. We consider how the law is developing to catch up particularly in three key areas - cybersecurity, privacy and product liability. Protecting individuals' personal data is crucial in a world where vast quantities of personal data are collected and stored by IoT devices. The GDPR (being implemented by May 2018 in EU member states) is examined in this context. Having effective security regulations and criminal sanctions for hackers in the context of cybersecurity as well as service providers ensuring they have agreements with others in the IoT ecosystem to mitigate the risks of product liability claims are all discussed. We then look at local legal developments in Thailand, where the government is working to address security and privacy concerns as part of its Thailand 4.0 digital plan. Our article contends that the success or failure at addressing consumer concerns about security, privacy, trust, and accountability - will help determine the viability of a fully-realized Internet of Things and its impact on the future of the global economic landscape. For more information, please contact Dhiraphol Suwanprateep and Kritiyanee Buranatrevedhya.