Latest

Data Protection

Certain types of personal data are very valuable to criminals, and can be very damaging to an individual or business if it falls into the wrong hands. As the world becomes more digital and more connected, more of this sort of data is generated and passed between various sources on a regular basis.

Government regulations and supervisory authorities aren’t just about keeping irresponsible parties in line. They also provide vital security guidance to every type of organization that handles sensitive personal, business or government information.

Data protection regulations also ensure that the end user has a transparent view of and a say in the processing of personal data. These safeguards play a significant role in everything from the preservation of civil rights to ensuring that democratic institutions function properly.

Some types of personal data are clear candidates for regulation: medical records, banking information, national ID numbers and so on. But some of these regulations also cover items that might seem relatively innocuous at first glance: home addresses, email addresses, website profile information and so on. For example, the European Union General Data Protection Regulation (GDPR) has stipulations about anything that is unique to an individual to include phone numbers and social media accounts. People have varying levels of privacy preference with these items, but they are often protected by regulation because they can be used for targeted scams and attempts at identity theft.

Given that regulations often take the size and customer count of businesses into consideration in terms of penalties and the scope of protection of personal data, compliance is particularly important for enterprise-scale organizations. You do not necessarily have to have an active business presence in a country or region; simply storing data on or moving it through servers there may subject you to their data protection rules.

Happy friends using smartphones and social media showing impact of LGPD on user experience

Data Protection Insights

Privacy First – How Data Protection Laws Impact on User Experience

August 13, 2020

With the LGPD (the Brazilian Data protection Law) coming into force in August 2020, how can companies address the challenges of customer experience? Read More

Automobile mechanic repairman checking a car engine with checklist showing need for CCPA compliance

Data Protection Insights

CCPA Compliance: Going Beyond Compliance Checkboxes

August 11, 2020

With the regulation now in force, some businesses may find themselves treating CCPA compliance as merely a checkbox but ready or not, enforcement is here, and the price for non-compliance can be extremely high. Read More

Young woman wearing surgical mask using smart phone app showing lack of data protection impact assessment for UK Test and Trace, in violation of GDPR

Data Protection News

UK Test and Trace Program Has Yet to Undergo a Data Protection Impact Assessment, May Be in Violation of the GDPR

August 7, 2020

Privacy advocate groups allege that UK Test and Trace rushed the process and did not conduct the necessary data protection impact assessment that the GDPR requires for collection of personal data on this sort of scale. Read More

Statue of the Goddess of Justice against EU flag showing reliance on SCCs with Privacy Shield gone

Data Protection General Insights

So the Shield Is Gone, What About SCCs?

August 5, 2020

While confirming that SCCs are valid with the Privacy Shield gone, the CJEU underlined that they can only be relied upon when risks have been properly assessed and cannot amount to a “tickbox exercise. Read More

Waving flags in front of European Parliament building showing release of EDPB guidance on Schrems II case

Data Protection News

EDPB Guidance Emerges in the Aftermath of the Schrems II Case

August 3, 2020

Much-needed EDPB guidance on the Schrems II judgment has been released and the picture looks about as grim as possible for impacted companies thus far. Read More

Team having a discussion on CCPA showing implications for small businesses

Data Protection Insights

CCPA Implications for High Growth Small Businesses

July 30, 2020

With the CCPA fully in force as of July 1, it is now more important than ever for small businesses to ensure that they are fully aware of their responsibilities and the steps they need to stay to stay compliant. Read More

Towers of the European Court of Justice showing revoke of Privacy Shield

Data Protection News

Privacy Shield Is Gone – What Now!?

July 29, 2020

Revoke of Privacy Shield is the second time in 5 years that the European Court of Justice has killed an EU-US data sharing agreement due to concerns of US government surveillance. Read More

Data protection concept showing revoked Privacy Shield leading to issues with data transfers

Data Protection News

Privacy Shield Revocation Greatly Complicates International Data Transfers; Is a Grace Period in the Works?

July 27, 2020

Top court in Europe struck down the Privacy Shield agreement that governed EU-US data transfers and can potentially limits data sharing with other countries via companies in the US. Read More

Woman in mask using mobile showing the enforcement of CCPA during second COVID-19 shutdown

Data Protection Insights

California Doubles Down on Unworkable Data Privacy Law During Second COVID Shutdown

July 23, 2020

CCPA enforcement has gone into effect on July 1 despite the COVID-19 shutdown and the economic turmoil, however many companies are still unsure on how to comply to the law. Read More

Gavel with CCPA acronym showing most companies are still not prepared for CCPA enforcement

Data Protection News

New Report Shows That Most Companies Are Still Not Prepared for CCPA

July 17, 2020

Even though CCPA enforcement has come into effect and could apply to violations dated back to beginning of the year, study shows that more than half of organizations are still not prepared for it. Read More