While the APRA is still a “discussion draft,” it aims to provide a national data privacy and security framework outlining consumer rights and data management requirements. Under the APRA, companies would have to limit the types of consumer data they collect, retain, and use, allowing only data needed to operate their services.
Today, data flows have become infinitely more complex in what has come to be known as surveillance capitalism. The challenge is how to future proof privacy legislation, learning the lesson of what worked with credit reporting laws as well as other more recent measures.
Many data-centric cybersecurity frameworks are pushing the industry towards full proactive prioritization and risk ranking gap analysis to enable an accurate measure of system risk while reducing the resources and time required for compliance with privacy regulations.
By 2024, it’s likely that almost every U.S. state will have its own data privacy regulations. Businesses getting prepared now are barely ahead of the curve; those that put it off till the laws hit the market will have to scramble to keep up.
With increasing privacy regulations, how exactly can organizations prepare for the looming privacy-driven era of digital advertising? It starts with baking privacy and transparency into all facets of operations.
Leaked document saw a Facebook engineer lament the international privacy regulations that the company is now subject to, describing them as a "tsunami." Facebook now faces some sort of user data compliance requirements in over 100 countries.
In recent months, the global privacy landscape has begun to shift. Several countries have started to draft and implement sweeping national privacy regulations, including China and the United Arab Emirates (UAE). What do advertisers need to know?