There are two things businesses everywhere like: certainty and harmonization. The Schrems II ruling in the Court of Justice of the European Union (CJEU) strikes a blow on both of these counts with respect to the vast (and hugely valuable) transfer of user data from the EU to the United States.
Once you’ve decided on the appropriate method for implementing your data map, you’ll need to analyze your company’s data using one of a few different methods. Here’s a guide to how this Data Notation process should be carried out.
It’s been a long time since Facebook was on the receiving end of good press – heavy is the head that wears the social media crown. A quick win, in my view, would be to openly and proactively assist its many advertisers trying to comply with the California Consumer Privacy Act (CCPA).
Under global privacy laws, consumers have the right to submit data deletion requests. This means companies must delete all the data contained on the user throughout their systems. This article will cover how businesses can execute deletion requests properly, what process it requires, and what most companies get wrong about data deletion.
I confess that the California Secretary of State’s announcement today, which affirmed the CPRA (or “CCPA 2.0”) will be put to public vote this coming November, and take effect as soon as next year, caught me by surprise.
Data minimization is one of the most important principles your business can follow to respect user data – and comply with global privacy laws. Follow along to see the basics of how to implement minimization in your data operations.
One of the first questions a business asks when they receive a privacy-related request from a user is: “how do we respond”? This guide contains templates for different types of privacy communication between privacy teams and their customers.
Global privacy laws like GDPR and CCPA require businesses to set up identity verification methods before responding to users’ data subject access requests (DSARs). This guide covers the different methods you can use to verify the identity of the user making the request.
For newcomers, the world of data privacy can feel a little like alphabet soup. There are so many acronyms floating around the data privacy world that understanding which laws, activities, and concepts belong where is a real challenge.
The General Data Protection Regulation (GDPR) is Europe’s data privacy law — the first of its kind, and still the world’s most comprehensive piece of privacy legislation.
