Privacy

U.S. Privacy Law: Past, Present and Future

Privacy law is a hot topic for legislatures in the United States at both the state and federal levels. With the advent of influential laws from international governments, including the European Union, the lack of significant privacy regulation in the U.S. has become glaringly apparent. In this article, we discuss the history of privacy regulation…
Read More

The EU Is Regulating Your AI. Five Ways To Prepare Now

The European Union (EU) is leading the world in regulating essential issues that impact anyone interacting with EU companies and citizens. The EU led the way on data privacy regulation with the General Data Protection Regulation (GDPR). They are doing it again with AI regulation, and it will impact your business. Should AI be regulated?…
Read More
DelBene

The Information Transparency and Personal Data Control Act

On March 11, 2021, Rep. Suzan DelBene (D-WA) introduced the House of Representatives’ first major privacy bill in the 117th Congress. Rep. DelBene recently joined an episode of the Association for Data and Cyber Governance’s U.S. National Privacy and Cybersecurity Podcast to discuss The Information Transparency and Personal Data Control Act ( H.R. 1816 ).…
Read More
GDPR

UK Ranks Second Highest in GDPR Fines

A new report from cybersecurity company ESET found that the UK ranks second highest in average GDPR fine value ($10 million), despite issuing the lowest number (five) of GDPR fines in the EU. Spain issued the highest number of fines (273), while Luxembourg issued the highest value fines.  The report found that more than 650…
Read More
UK

UK Proposes Reforms to Data Protection Laws

On 10 September 2021, the UK Government’s Department for Digital, Culture, Media, and Sport (DCMS) published its long-awaited proposals for reform of the country’s data protection laws. The consultation paper includes a detailed and comprehensive set of suggested amendments to the UK GDPR, Data Protection Act 2018, and Privacy and Electronic Communications Regulations (PECR), with…
Read More
Privacy Law

Colorado Privacy Act: Another Piece to the Data Privacy Puzzle

Introduction Privacy laws have entered the compliance world by storm and are quickly changing data privacy practices. The most recent state, Colorado, passed the Colorado Privacy Act (CPA) into law on July 7, 2021. This new act follows California’s Consumer Privacy Act (CCPA) but calls out several additional rights, actions, and policies. The CPA pulls…
Read More
Cybersecurity

The 3 Biggest Mistakes the Board can Make around Cybersecurity

Although the topic of cybersecurity is now definitely on the board’s agenda in most organizations, it is rarely a fixed item. More often than not, it makes appearances at the request of the Audit & Risk Committee or after a question from a non-executive director, or – worse – in response to a security incident…
Read More
Securities Exchange Commission

Switzerland and United Kingdom Issue Guidance for Data Transfers to SEC 

Businesses and organizations registered with the U.S. Securities and Exchange Commission are often required to share personally identifiable information (PII) with the regulatory body.  But for entities that have operations outside of the U.S., complying with SEC requests has created a legal conundrum since the European Court of Justice’s Schrems 2.0 ruling–which invalidated the EU-U.S.…
Read More
Third Party

How India’s DEPA Framework Uses Software to Empower Privacy Compliance

As detailed as laws like the General Data Protection Regulation (GDPR) and the California Privacy Rights Act (CPRA) are, there is no one-size-fits-all framework for data privacy. You may know the rules, but how do you make sure you and the rest of your organization are following them? More specifically, how do you implement privacy-focused…
Read More
Consumer Data

Deleting Data: A Guide

Of the many consumer rights established by the ever-expanding crop of data privacy legislation, the right to deletion is one of the ones you’ll see the most. Although different laws may have slightly different variations of the right, the general sentiment remains consistent – consumers have the right to have their personal data deleted from…
Read More
Back To Top