Identifying data processing obligations is tricky, especially as overlapping privacy laws are enacted. Compliance will always hinge on understanding what laws jurisdictionally apply and a firm grasp of the data collected and purpose of such collection. As discussed throughout this series, these related laws are generally rooted in the Fair Information Practice Principles (FIPPs), which serve as a reliable guidepost when developing a data privacy and security program.
Please see full publication below for more information.