What do you need to know about the latest revisions to the Colorado CPA Rules?
Some key points:
Universal Opt-Out Mechanism (UOOM)
- The Universal Opt-Out Mechanism does not need to
New Day, New Colorado CPA Rules Revisions
Make Sure You Have a Good Data Retention Plan. You Need It.
You need a data retention plan. No really.
And not just in the European Union. In California too.
Commission Nationale de l’Informatique et des Libertés (CNIL) has fined messaging platform
Continue Reading Make Sure You Have a Good Data Retention Plan. You Need It.The American Data Privacy and Protection Act Is Now on the House Floor. How Has It Changed?
The Commerce and Energy Committee has voted to send the American Data Privacy and Protection Act (ADPPA) to the House, but not without some changes.
For the changes in the
Continue Reading The American Data Privacy and Protection Act Is Now on the House Floor. How Has It Changed?Data Protection on the Blockchain: Singapore’s Personal Data Protection Commission Weighs In
Singapore Personal Data Protection Commission (PDPC) has published a guide on data protection in the blockchain.
Some key points:
Permissionless blockchain:
- Any personal data published in-clear is a form
If You Don’t Want It Released to an Employee, Don’t Put It in Your Employee Files
The old saying went that “if you don’t want it on the front page of the newspaper, don’t put it in an email.” Well, if you don’t want to produce
Continue Reading If You Don’t Want It Released to an Employee, Don’t Put It in Your Employee Files
What Can the California Privacy Protection Agency Learn From Europe?
What can the California Privacy Protection Agency learn from the EU experience as it gets ready to draft regulations regarding DPIAs? Here is a recap of my remarks from the
Continue Reading What Can the California Privacy Protection Agency Learn From Europe?
Shape Up Or Ship Out: UK Information Commissioner’s Office Issues New Opinion Regarding Adtech Initiatives
What does the U.K. Information Commissioner’s Office have to say about what it takes for adtech initiatives to be compliant with data protection?
“There is an opportunity for market participants
Continue Reading Shape Up Or Ship Out: UK Information Commissioner’s Office Issues New Opinion Regarding Adtech Initiatives
GDPR Provisions Are Coming to a Privacy Bill Near You
U.S. Representative Cathy McMorris Rodgers, the Republican leader of the House Energy and Commerce Committee, and U.S. Representative Gus Bilirakis, the Republican leader for the Consumer Protection and Commerce Subcommittee,
Continue Reading GDPR Provisions Are Coming to a Privacy Bill Near You
IAPP: Data Protection Impact Assessments Are the New Black
“Going forward, (Data Protection Impact Assessments) DPIAs should be considered beneficial to both controllers and processors for multiple reasons, including determining which alternative transfer mechanisms might be most viable, as
Continue Reading IAPP: Data Protection Impact Assessments Are the New Black
Ten Examples of Data Processing Activities That Don’t Require a DPIA According to France’s CNIL
The French Data Protection Authority CNIL has issued guidance on types of data processing for which a Data Protection Impact Assessment (DPIA) is not required under GDPR:
- HR-related processing, not