The United Kingdom’s Information Commissioner’s Office has issued draft guidance regarding governance and anonymization.

What does it mean for GDPR and for the host of new US Privacy laws, including CPRA, CDPA and CPA? And why is it so important?

Though intended to help with GDPR compliance, this guide also helps with how to implement these new CPRA requirements as well – including what to put in contracts with entities you allow you use your anonymized data, what DPIA you should do, and how to oversee this.

Companies preparing for CPRA next year should take note!

For a deeper dive, please read my alert here.