Starting January 1, 2026, businesses operating in Rhode Island will need to comply with the Rhode Island Data Transparency and Privacy Protection Act, a mouthful of a law abbreviated as RIDTPPA. (Not exactly catchy, is it?)...more
In our recent webinar, It’s Time to Think About Data Mapping Differently, a poll revealed some interesting information: Nearly 50 percent of respondents house their data map in a spreadsheet. (Roughly 15 percent say they...more
Navigating the stringent requirements of data subject access requests (DSARs) can feel like summitting a mountain—the path forward isn’t always clear, pitfalls abound, and you’re fighting gravity all the way....more
As we wait for a federal privacy law in the U.S., the Land of 10,000 Lakes joins a growing number of states that now have their own laws. As expected, Minnesota’s data privacy law has similarities to other state privacy laws...more
If you’re a data person, or even if you’re not, you may have heard the statistic cited by Eric Schmidt, executive chairman at Google: “There were 5 exabytes of information created between the dawn of civilization through...more
Maryland recently joined the growing number of states enacting comprehensive consumer data privacy laws with the passage of the Maryland Online Data Privacy Act (MODPA).
Despite similarities with several other state...more
Research shows that the average business shares its data with over 730 different vendors. It’s hard enough to mitigate risk within your own organization—how do you mitigate risk from more than 730 external entities?...more
It’s official—the Cornhusker State has a new data privacy law. The Nebraska Data Privacy Act (NDPA) is now among the growing number of state laws businesses must contend with absent a federal law....more
It’s official. Kentucky will join Indiana, New Hampshire, and a slew of other states with the enactment of a comprehensive data privacy act.
The Kentucky Consumer Data Protection Act (KCDPA)–at least this iteration of...more
The GDPR contains plenty of requirements, penalties, obligations, rights, and definitions—but it doesn’t contain a specific template for DPIAs, or data protection impact assessments.
If you’re struggling to identify...more
New Hampshire has joined the many other states implementing comprehensive data privacy laws in the absence of an overarching federal regulation. While this means greater complexity for businesses, we’ve got you covered. Read...more
Whether as a consumer or as a stakeholder in a business, you’ve likely seen links reading “Do Not Sell My Personal Information” or “Do Not Sell or Share My Personal Information.”
On the surface, these links seem...more
One of data privacy’s greatest challenges is that it can all feel just so abstract.
What does it really mean for an individual’s data to be at “risk”? What activities are riskier than others?...more
Most people find data privacy compliance to be complicated enough. So, when they encounter the concept of data mapping—something that isn’t an explicit requirement in any data privacy law—many find themselves scratching their...more
Preference centers sit at the intersection of user experience and compliance. Whether you’re a compliance professional, marketer, or engineer, a well-designed preference center can help you make an impact on how your audience...more
For your business’s audience, choice and control are paramount. Nobody likes having no say in how they engage with a business or what that business does with their information....more
CPRA enforcement has gone through many twists and turns over the years, and it’s completely reasonable to be a bit confused about what’s happened.
After a last-minute reversal, the CPRA is fully enforceable as of July...more
With so much of our society’s data flowing through digital platforms, keeping it safe is increasingly crucial. If your business has access to any personal information (PI)—a person's full name, phone number, email address,...more
Consumers in the Garden State now have comprehensive data privacy protections. But what does that mean for New Jerseyans?
With Gov. Phil Murphy signing Senate Bill 332 (S332/A1971), businesses and entities such as...more
Wouldn’t life be easier if you could just drop whatever cookies you liked onto your website visitors’ browsers? After all, cookies are nothing more than strings of text—you could have your website use dozens of cookies and it...more
Running a business is complex, and there is no end to the number of different domains that you’ll need to be familiar with if you want to be successful. Data privacy professionals might not need to ask what data privacy...more
Understanding cookies and consent management is an important step to becoming compliant with modern data privacy regulations, but there’s another piece of the puzzle: Cookie governance.
Good cookie governance is what...more
The General Data Protection Regulation (GDPR) has brought significant changes to how companies handle personal data—and cookies are easily one of the largest sources of personal information for businesses. Find out all about...more
The European Union (EU) has taken a significant step towards regulating artificial intelligence (AI) with the passage of the EU AI Act. This comprehensive legislation establishes a framework that ensures AI is developed and...more
Data privacy has never been more top of mind. From regulators to businesses, privacy professionals to consumers, and more, everyone has a stake in data privacy.
With all this attention and focus, the data privacy world...more