Data subject access requests (DSARs), or subject rights requests (SRRs), are evolving.
Whether your organization is based out of the EU, the US, or elsewhere in the world, consumers’ awareness and expectations are...more
The 1:10:100 rule—coined in 1992 by George Labovitz and Yu Sang Chang, the rule describes how much bad data costs. Preventing the creation of bad data at its source costs $1. Remediating bad data costs $10. Doing nothing...more
When we write about data privacy, it’s easy to default to talking to “privacy professionals.”
But take a look at the privacy management industry: The privacy program managers, chief privacy officers, and other purely...more
In 1992, Singapore banned the sale of all chewing gum. But if you owned a cornerstore in the U.S. and a Singaporean tourist came to visit your business, there would be nothing to stop you from selling them a pack of gum—in...more
5/24/2023
/ Cybersecurity ,
Data Management ,
Data Processors ,
Data Protection ,
EU ,
General Data Protection Regulation (GDPR) ,
Information Technology ,
International Data Transfers ,
Personal Data ,
Personally Identifiable Information ,
State Data Privacy Laws
On April 3rd, 2023, Italy became the first EU country to ban ChatGPT. Among other countries seriously analyzing AI’s GDPR compliance, Germany, Ireland, France, and others may follow its example. What does this mean for...more
4/28/2023
/ Artificial Intelligence ,
Data Collection ,
Data Management ,
Data Protection ,
Data Subject Access Requests ,
General Data Protection Regulation (GDPR) ,
Information Governance ,
Information Technology ,
Italy ,
Machine Learning ,
Permanent Bans ,
Privacy Concerns
Iowa has joined California, Colorado, Utah, Connecticut, and Virginia in the growing rank of states to enact a statewide consumer data privacy law. Dubbed the Iowa Consumer Data Protection Act (ICDPA), the regulation was...more
4/10/2023
/ Consumer Privacy Rights ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Data Subject Access Requests ,
Information Technology ,
New Legislation ,
New Regulations ,
Personal Data ,
Regulatory Reform ,
State Data Privacy Laws
For the most part, businesses gather employee data without too much thought. Sure, some data is obviously private, like employee social security numbers, but other than that, businesses can pretty much do what they want with...more
3/31/2023
/ California Privacy Rights Act (CPRA) ,
Data Management ,
Data Privacy ,
Data Protection ,
Data Subject Access Requests ,
Data Subjects Rights ,
Employee Privacy Rights ,
Employee Rights ,
Employer Liability Issues ,
General Data Protection Regulation (GDPR) ,
Information Requests
Roughly 60 percent of Americans don’t understand what companies do with their data. Sixty-three percent say they understand very little or nothing at all about privacy laws and regulations. And unfortunately, some of your...more
To date, 71% of the world’s countries feature some form of privacy legislation. More and more businesses are subject to data privacy regulations, and more and more businesses are working hard to ensure they’re respecting...more
According to research by the International Association of Privacy Professionals (IAPP), privacy is growing—but not fast enough. Privacy teams are growing by 12% year-over-year, but many organizations are still struggling to...more
No matter how thorough your evaluation process is, deciding on a given software solution can be like taking a leap of faith. There’s just no way to really know what it’ll be like until you actually get your hands on the...more
At midnight on the 25th of May, 2018, millions of people were suddenly in possession of legal rights they lacked minutes before thanks to the General Data Protection Regulation (GDPR). Among those rights were the ability to...more
Anybody whose responsibilities include privacy can relate: Most people vastly underestimate the complexity of data privacy compliance. And that’s if they understand why data privacy compliance matters at all....more