Issuing GDPR fines is just the first step of the process; at some point they have to be collected, and the UK ICO is struggling to do that with only a 26% success rate.
Adhering to privacy may appear straightforward, but the logistical and technological challenges getting there are daunting. To holistically incorporate privacy into an organization, one has to take stock of the challenges that have historically impeded compliance efforts.
Privacy activism group noyb, which has made headlines for its high-profile cases against Facebook in the EU, has brought a corruption complaint against the Irish DPC over its handling of a case that dates back years.
A new Commissioner's Opinion issued by the UK's ICO reiterates the country's data protection standards and lays out its vision of future regulation plans for adtech companies.
Recently, China’s new Personal Information Protection Law (PIPL) went into effect. The question now is what does this mean for the future of data protection policy, and perhaps more importantly, the lack of a comprehensive U.S. policy?
noyb has leaked documents that show Facebook approached the EDPB with their concept of “user contracts” that sidestep GDPR rules for user consent after numerous receptive meetings with the Irish DPC.
China’s Personal Information Protection Law (“PIPL”) is now in effect, prompting a surge in hiring for DPOs. What was once a security-oriented role for DPOs in China has been elevated to serve the critical oversight function of ensuring organizational compliance with PIPL.
Any leader handling data in this ever-evolving landscape must understand how to categorize data to better protect their organizations and customers when working in challenging and emerging markets.
As we move into 2022, developments in ransomware, growing data sprawl, hybrid working, the nascent but growing use of artificial intelligence (AI) and machine learning (ML) technologies will continue to make a significant impact on data protection and management.