Fortunately for businesses that are covered by the California Consumer Protection Act, fair warning has already been given that, although the CCPA comes into effect on January 1, 2020, the actual enforcement of the Act will not begin until July 1, 2020 – in effect providing an unstated “period of grace” of six months for affected organizations to get their act together.Read More
Under the GDPR businesses are legally required to carry out a Data Protection Impact Assessment DPIA if any type of processing is likely to result in a high risk to the data subject. A DPIA provides a methodical and comprehensive way to analyze the processing of personal information and help to identify and mitigate data protection risks.Read More
15 months since the GDPR came into effect, we take a look at an issue which is becoming a major concern for businesses, as they grapple with the law's legal requirements. Subject Access Requests (SARs) are increasing rapidly, as individuals exercise their rights to access their personal information.Read More
Like the spluttering of an old car that won't start, the federal privacy law sits motionless on the starting grid, while California takes pole position in the regulatory race for data privacy.Read More
New York's privacy bill echoes many of the protections included in the CCPA, like disclosing to consumers what data is held on them, and who else has access to their data. New Yorkers will also be able to request correction or deletion of their data, as well as the right to refuse the sale or sharing of their data with third parties.Read More
Sales of DNA testing kits have skyrocketed, as increasing numbers of consumers become interested in exploring their ancestry. If the trend continues, the companies concerned could be holding the genetic information of more than 100 million people within the next two years.Read More
A presentation by Tom Wilson considers the policy issues that surround the use of consumer data by the tech industry. …The future of tech innovation, and how to protect the individual privacy of consumers, while promoting innovation and certainty.Read More
So, the UK has a new prime minister. Boris Johnson has begun his term by assembling his team, following a large-scale clear out of cabinet …. But this is not about the who's-who of Mr Johnson's new cabinet…Read More
Last Friday's breaking news story by The Wall Street Journal, that the FTC has approved a fine of $5 billion to be imposed on Facebook came may have come as no surprise. But what does this really mean for Facebook? - and how will it affect boardroom conversations about compliance with consumer privacy law?Read More
By virtue of it's name, the CCPA is implicitly designed to protect the privacy interests of "Consumers". But the big question on the lips of many business owners is... Are employees also "Consumers"?Read More
By now, companies that do business in the state of California should have January 1, 2020 clearly marked on their calendars. As if you didn't know, that's the data that the California Consumer Privacy Act (CCPA) comes into effect.Read More
Continuing from our recent article on the latest round of amendments to Nevada privacy laws, we take a look at the implications of the new opt-out rights given to Nevada consumers and the impact on businesses that have to comply.Read More
With a laser-like focus on citizens’ privacy rights, the CCPA brings strict controls to the way businesses collect, store, and process the personal information of California residents …Read More
Nevada Governor Steve Sisolak has signed into law an amendment (SB 220) to Nevada’s security and privacy law which requires operators of commercial websites or online services to allow consumers to opt-out of the sale of any covered personal information that the operator has, or intends to, collect about them.
The SIlver State’s new law will come into effect on October 1, 2019, two months ahead of the more comprehensive California Consumer Privacy Act (CCPA). This will make it the first law in the United States that gives consumers the right to opt-out of the sale of their personal data.Read More
It’s no secret that lobbying groups have been working overtime in their attempts to derail the California Consumer Privacy Act (CCPA) before it becomes law on January 1, 2020. It’s also widely known that some of these groups are lobbying on behalf of certain tech giants, who see the new privacy law as a threat to their data collection practices.Read More
Back in March of this year, not one, but two consumer privacy bills were filed in the Texas House of Representatives. Republican Rep. Giovanni Capriglione filed House Bill 4390 a.k.a. Texas Privacy Protection Act, while Democrat Rep. Trey Martinez Fischer filed HB 4518 a.k.a. the Texas Consumer Privacy Act.
Unsurprisingly, both bills are modeled on California’s Consumer Privacy Act (CCPA). But that’s where the similarity ends, as there are a number of differences between the two bills.
In this article we examine what Texas started out with ….and what it ended up with.Read More
The Federal Trade Commission’s (FTC) advice on Data Security says; having a sound security plan in place to collect only what [data] you need, keep it safe, and dispose of it securely can help you meet your legal obligations to protect sensitive data.
So, what happens when this sage advice is not taken?
Well, it seems the FTC is taking a much tougher stance on compliance obligations of consent orders it enters into with businesses to settle enforcement actions relating to data breaches.Read More
Transparency is one of the most fundamental aspects of the California Consumer Privacy Act (CCPA). The new regulation introduces vital new consumer rights, as well as strict obligations for businesses to disclose their data gathering operations.
Once the CCPA comes into force in January 2020, there will be increased scrutiny of privacy notices - with a particular focus on the details of a business’s data collection and processing practices.Read More
As the debate about a federal privacy law versus state-level laws reaches fever pitch, and consumers become increasingly concerned about their privacy, we look at the impact of data privacy on marketers, as they look to protect and grow brands, while complying with strict privacy policies.
However, the smart marketing companies are not just exploring preemptive ways of avoiding trouble, they are also looking to create a genuinely pleasing and trusted experience for their target customers.
So, how can compliance and technology help marketers to gain a competitive edge, while building (and retaining) consumer trust?Read More
For many businesses, compliance with the General Data Protection Regulation (GDPR) has proven to be a bigger challenge than first anticipated, with much of the confusion caused by the complexities of the 99 articles and 173 recitals that make up the 261-page document.
This article, although not definitive, provides some clarity for companies seeking to establish appropriate legal grounds for the processing of personal data.Read More