Data Privacy
Data privacy, also known as information privacy, focuses on the proper handling of data usage, consent, notice, and regulatory obligations. It also includes discussion on the right to control how data is collected, shared, retained, or deleted. Our data privacy blog posts and news articles are written for compliance officers, auditors, and legal professionals. They include expert insights, opinions, training opportunities, events, whitepapers, podcasts, and webinars.
On December 15, 2020, the European Commission published its proposals for the European Union Digital Services Act (EU DSA), which aims to create a safer online environment for EU citizens by legally requiring online service providers to swiftly remove illegal content...
Read more
On May 12, 2021, the U.K. government published its draft Online Safety Bill which will place a legal obligation on online platform operators and interactive website owners to swiftly remove illegal content. Under the draft bill, very large online platforms,...
Read more
In many spheres, PCI DSS is like the law of gravity: It affects just about everything. PCI DSS 4.0, the first major update since 2013, is right around the corner. If your business so much as smells cardholder data, this...
Read more
Both your company's data supply chain and its physical version have fundamentally similar business risks. Given the consequences of unethical practices along both, enterprises can no longer ignore how data is sourced, how it is managed or where it is...
Read more
TrustArc, the leader in data privacy management and automation has released its 2021 TrustArc Global Privacy Benchmarks Report. Now in its second year, the report highlights how companies’ priorities and strategic approaches to data privacy and security are evolving and...
Read more
GDPR and CCPA have proven to be landmarks of consumer data protection. Virginia’s new privacy law moves the needle even further. While the CDPA may evolve before it goes into effect in 2023, there is reason to believe it will...
Read more
Privacy laws remain a moving target, and businesses must create privacy management programs that are flexible to fluid regulations and evolving business models. This is especially true as numerous states consider their own privacy legislation. This alert summarizes the latest...
Read more
Countries and economic unions around the world are adopting national privacy laws. Rather than state-by-state privacy legislation, wouldn’t it be easier to have one all-encompassing privacy law for the U.S.? Imagining a National Business Landscape Without a National Privacy Law...
Read more
A growing wave of states are considering and passing data privacy legislation. Virginia is the latest to join. This article provides a quick rundown of the implications of the Consumer Data Protection Act. Virginia has become the latest state to...
Read more
California's CPRA bolsters its landmark data privacy law, the CCPA. Set to take effect in two years' time, the update contains important clarifications on various definitions, minors' data and the collection and use of personal information. California’s new Consumer Privacy...
Read more
Using facial recognition technology for tracking employees in the workplace is largely unregulated in the U.S. While the GDPR in the E.U., a few states and industry organizations have provided leadership, experts believe face-scanning will receive attention from lawmakers in...
Read more
Towerwall’s Michelle Drolet discusses the two threads of SOC 2 compliance (types 1 and 2), outlines the Trust Services Criteria, and details the benefits of adhering to these standards. While Service Organization Control (SOC) 2 compliance isn’t mandatory, it can...
Read more
