Deleted Data Gdpr

Why Deleting Data Doesn’t Meet GDPR’s Data Destruction Guidelines

When it comes to data, there’s a fine line between deletion and destruction. Under many of the major privacy laws, organizations are obligated to “delete” or “erase” data, while consumers are granted the right to be forgotten. The problem? Deleted data isn’t really gone.  According to ZDNet, 59 percent of used or refurbished hard drives…
Read More

How to Respond to Automated Data Subject Requests

The implementation of high-profile data laws such as the EU’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) have given consumers the ability to exercise previously-unheard-of rights.  This paradigm shift has left businesses and financial organizations scrambling to keep up, perhaps most notably with data access and opt-out requests–when consumers submit…
Read More

A Guide to Florida’s Proposed Version of CCPA

The California Consumer Privacy Act (CCPA) has been an influential model for other states as they draft their own data privacy legislation. Recent laws from Virginia and Minnesota closely resemble CCPA, and now Florida has made joined the movement with a new data privacy law that is strikingly similar to California’s. The bill, called HB 969, has…
Read More

EU Releases Draft Decision on UK Data Privacy Standards

Since the start of 2021, post-Brexit data relationships between the European Union and the United Kingdom have been governed by The EU-UK Trade and Cooperation Agreement, which established a 4-6 month temporary period where data could flow freely between the two jurisdictions.  Beyond that, the future was unclear. The grace period could have been extended…
Read More

Minnesota Proposes its Own Version of CCPA

Ever since the California Consumer Privacy Act (CCPA) set the tone for state-level privacy laws, more and more states have followed suit. At the start of the year, Minnesota proposed its own data privacy bill–and yes, it’s heavily influenced by CCPA. The bill, known as HF-36,has been sent for referral to the Committee on Commerce,…
Read More

Virginia Set to Enact Major Data Privacy Legislation

Of all the states currently in the process of enacting major privacy legislation, Virginia may be closest to the finish line. On February 5, the Senate of Virginia voted unanimously to approve the Consumer Data Protection Act (CDPA), with the House of Delegates voting 89-9 to approve an identical bill.  Minor amendments are expected after the…
Read More

A Guide to New Draft SCCs–and the EDPB’s Response

Ever since the EU-US Privacy Shield was struck down in Schrems 2.o, companies have been scrambling to figure out how to safely transfer data in and out of the EU while remaining compliant with the General Data Protection Regulation (GDPR). At this point, the general consensus is that transfers from the EU should only be…
Read More

Why Your Organization Should Implement “Privacy by Design”

 Privacy by Design (PBD) the idea that organizations should design every part of their operation with data privacy in mind was popularized by the European Union’s General Data Privacy Regulation (GDPR). Any products or services that call for the processing of personal data should account for privacy from their inception and every stage of development…
Read More
Back To Top