One of the first questions a business asks when they receive a privacy-related request from a user is: “how do we respond”? This guide contains templates for different types of privacy communication between privacy teams and their customers.
Global privacy laws like GDPR and CCPA require businesses to set up identity verification methods before responding to users’ data subject access requests (DSARs). This guide covers the different methods you can use to verify the identity of the user making the request.
For newcomers, the world of data privacy can feel a little like alphabet soup. There are so many acronyms floating around the data privacy world that understanding which laws, activities, and concepts belong where is a real challenge.
The General Data Protection Regulation (GDPR) is Europe’s data privacy law — the first of its kind, and still the world’s most comprehensive piece of privacy legislation.
Governments and citizens across the world are increasingly aware of the importance of data privacy. With the rise in awareness, authorities in many countries have drafted regulations and laws to protect their citizens on the internet. Other countries have laws in late stages of development.
The issue of privacy has found rare bipartisan support in the United States Senate. Ethyca CEO Cillian Kieran recently sat down for a conversation on the state of the US federal privacy conversation with Amie Stepanovich.
The CCPA is the state of California’s data privacy law. It marks a milestone in US privacy regulation in the same way that GDPR did for Europe. In short, it’s a game-changer.
Since CCPA came into effect the California Attorney General, Xavier Becerra, has issued additional guidance to help explain and clarify certain parts of the law.
Privacy By Design is a key concept in the study of modern data privacy. It’s incorporated into the text of the GDPR as a core principle, and its influence is considerable across a number of data privacy laws worldwide.
Individual data rights are at the core of all the major pieces of data privacy legislation. They are a bundle of rights aimed at letting individuals exert control over the way that their data is collected, stored, and processed by other parties. Each data right below is substantive enough to consider independently, but seeing the list together provides a useful overview.
