The EU Data Act, which takes effect Sept. 12, is awash with uncertainties that will likely spark challenges from consumer and plaintiff lawyers and impel data protection authorities (DPAs) to "become active very early on," Latham & Watkins data, cyber and tech lawyer Tim Wybitul told Privacy Daily this week.
Compliance Techniques
Compliance techniques encompass the strategies, tools and processes organizations use to meet evolving privacy and data protection requirements. Privacy engineers, chief data protection officers and compliance teams deploy methods such as data mapping, privacy impact assessments and automated monitoring to align with new laws in the U.S. and abroad. These techniques help avoid costly enforcement actions and build trust by embedding privacy by design into products and operations.
Organizations providing content accessible to kids “should prepare for greater legal and regulatory scrutiny,” said an IAPP analysis on age assurance published Monday.
Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching the title or clicking on the hyperlinked reference number.
The age-assurance landscape is shifting so quickly that it feels like "building the plane while flying it," IAPP Vice President Caitlin Fennessy said Wednesday during an IAPP webinar. With new laws, technologies and approaches cropping up globally, the privacy community must become more engaged in age-assurance activities and decisions, speakers said.
Companies must understand their websites' tracking technologies and know what data they collect so they can remain compliant. This is especially so within the healthcare sector, said panelists during an IAPP webinar about Health Insurance Portability and Accountability Act (HIPAA) compliance Wednesday.
Director of National Intelligence Tulsi Gabbard's announcement Tuesday that the U.K. dropped its demand that Apple provide "backdoor" access to users' encrypted data brought cheers from the tech and privacy sectors.
Battles between states and the federal government over what is an appropriate -- and lawful -- amount of data to be shared between agencies and law enforcement is representative of a larger power struggle, said Cobun Zweifel-Keegan, IAPP managing director for Washington, D.C., in a blog post Friday.
As AI and other data-rich emerging technologies become more prevalent and amp up the need for information, organizations must ensure their privacy policies and practices help engender customer trust, said JoAnn Stonier, Mastercard fellow of data and AI, said Wednesday.
Legislation significantly revamping Israel's data protection law took effect Thursday, but the country's privacy watchdog said it will delay enforcement of one of its provisions until October.
Companies should master the fundamentals of privacy, which will form a solid foundation when handling new privacy regulations, enforcement actions and emerging technologies like AI, said Sourcepoint’s Chief Privacy Officer Julie Rubash and Brian Kane, the chief operating officer of the privacy software company that was recently acquired by Didomi (see 2507080040).