Author Archives: agreenley

TrustArc speaking at IAPP Canada Privacy Symposium 2019

Personal data makes so much possible in technology, and health care, and marketing, and retail, and… where does privacy fit in? Explore that question and more by attending the IAPP Canada Privacy Symposium 2019. This year’s symposium features two days of breakout sessions focused on the challenges of deriving value from personal data while protecting individual rights. Hear advice on fundamentals such as breach response, privacy/data security synergy, data localization and anonymization, and vendor management. Look ahead to policy developments that will influence privacy practice. TrustArc is proud to have several speakers at this month’s IAPP Canada Symposium in Toronto! … Continue reading TrustArc speaking at IAPP Canada Privacy Symposium 2019

The post TrustArc speaking at IAPP Canada Privacy Symposium 2019 appeared first on TrustArc Blog.

Privacy Advisory: What Regulatory Changes Have Been Happening Around Cookie Consent

The TrustArc “Current State of Cookie Consent Compliance and Enforcement” Privacy Advisory provides a brief background on cookies and tracking technologies, the role of the GDPR’s definition of consent and that law’s relationship to ePrivacy. Also addressed are recent cookie consent-related activities by several regulatory authorities, clarifying compliance requirements within the EU, and early possible interpretations relating to cookie practices under the forthcoming California Consumer Privacy Act (CCPA). The EU ePrivacy Directive regime, as implemented among the individual Member States, independently requires consent as a pre-condition to lawfully accessing or storing information on an end user’s device. ePrivacy uses the … Continue reading Privacy Advisory: What Regulatory Changes Have Been Happening Around Cookie Consent

The post Privacy Advisory: What Regulatory Changes Have Been Happening Around Cookie Consent appeared first on TrustArc Blog.

Privacy Intelligence News & Insights: New Jersey and Washington Amend State Data Breach Notification Laws

On May 10, New Jersey Bill S-52 was signed into law, which amends the state’s data breach notification law to expand the definition of personal information. Under the amended law, effective September 1, 2019, “personal information” that requires a company to notify individuals if breached now includes a “user name, email address, or any other account holder identifying information, in combination with any password or security questions and answer.” In Washington, the state legislature passed an amendment to the existing data breach notification law that expands the list of data elements that require notification to individuals if breached in combination with an … Continue reading Privacy Intelligence News & Insights: New Jersey and Washington Amend State Data Breach Notification Laws

The post Privacy Intelligence News & Insights: New Jersey and Washington Amend State Data Breach Notification Laws appeared first on TrustArc Blog.

Publishers and Privacy: How Ad-Supported Websites Can Manage Privacy and Minimize Risk

Content publishers, media and other advertising-supported websites have already had to grapple with the privacy requirements put forth in the EU General Data Protection Regulation (GDPR). Similar regulations are also in force in a number of other countries in the Americas, Europe and Asia. In addition, at the start of 2020, publishers will have to comply with the California Consumer Privacy Act (CCPA). Still more privacy regulations are being advanced and debated in other U.S. states, and around the world. In fact, more than ten different U.S. states, including Massachusetts and Texas, are in the process of considering privacy laws … Continue reading Publishers and Privacy: How Ad-Supported Websites Can Manage Privacy and Minimize Risk

The post Publishers and Privacy: How Ad-Supported Websites Can Manage Privacy and Minimize Risk appeared first on TrustArc Blog.

Privacy Intelligence News & Insights: CCPA Amendments Overview

State Legislators continue to consider amendments to the California Consumer Privacy Act amidst uncertainty over how companies will meet the requirements, which go into effect January 1, 2020. Late last month six bills were advanced in the California Assembly that would greatly impact the force and effect of the CCPA as it was enacted almost a year ago. On April 23, 2019, the Privacy and Consumer Protection Committee passed these industry-backed amendments: AB 25, Chau: Expressly excludes contractors, agents, and job applicants from the definition of employees, to the extent their personal information is used for purposes compatible with that … Continue reading Privacy Intelligence News & Insights: CCPA Amendments Overview

The post Privacy Intelligence News & Insights: CCPA Amendments Overview appeared first on TrustArc Blog.

TrustArc at IAPP Global Privacy Summit 2019: Event Recap

TrustArc had the pleasure of sponsoring, speaking and exhibiting at IAPP Global Privacy Summit 2019 this month in Washington D.C. With over 4,000 attendees, 300 sessions and 60 exhibitors, the Summit was buzzing with hundreds of privacy professionals, many of whom traveled to the D.C. Summit from all corners of the globe. This year’s Summit was the perfect setting for privacy-related education, guidance, inspiration and connections that spotlighted the big picture of data protection. TrustArc SVP Product Management, Michael Lin, took over the Little Big Stage on Thursday morning to discuss how businesses use the TrustArc Platform to automate and … Continue reading TrustArc at IAPP Global Privacy Summit 2019: Event Recap

The post TrustArc at IAPP Global Privacy Summit 2019: Event Recap appeared first on TrustArc Blog.

TrustArc Participates at Practicing Law Institute in San Francisco

TrustArc was honored to be invited to serve as faculty for the Practicing Law Institute (PLI)’s 20th Annual Institute on Privacy and Data Security Law on May 6-7 in San Francisco.  Before an audience of attorneys representing a wide array of industries and private practice, the days’ sessions covered topics ranging from complying with the California Consumer Privacy Act, to addressing cybersecurity readiness, to insights from regulators, to ethical considerations for privacy and info sec attorneys, to vendor risk management.   Hilary Wandall, SVP, Privacy Intelligence and General Counsel, presented on a panel entitled “Beyond GDPR – Privacy and Data … Continue reading TrustArc Participates at Practicing Law Institute in San Francisco

The post TrustArc Participates at Practicing Law Institute in San Francisco appeared first on TrustArc Blog.

Upcoming Webinar – “Putting your Data Inventory to Work: Getting a Return on your Investment”

TrustArc is proud to present the next Privacy Insight Series webinar “Putting your Data Inventory to Work: Getting a Return on your Investment” with TrustArc Senior Privacy Consultant, Beth Sipula, FIP, CIPM, CIPP. This webinar will take place on Wednesday, May 22nd at 9am PT / 12pm ET / 5pm GMT. Don’t miss this opportunity to learn best practices on how to leverage your data inventory – register today! GDPR forced companies to invest in building a data inventory and developing a fundamental understanding of how data flows through their organization. But what’s next? How can you use the inventory … Continue reading Upcoming Webinar – “Putting your Data Inventory to Work: Getting a Return on your Investment”

The post Upcoming Webinar – “Putting your Data Inventory to Work: Getting a Return on your Investment” appeared first on TrustArc Blog.

May Event Spotlight: IAPP Global Privacy Summit, Data Protection World Forum Webinar, IAPP Webinar, CCPA PRIVACY SUMMIT, European Data Protection Days, Privacy Insight Series Webinar, TrustArc Workshop, and GDPR Salon

TrustArc regularly attends and hosts events around the world and online – please visit us at one or more of the following events. ________________________________________________________________________ IAPP Global Privacy Summit Washington DC May 1 – May 3 The IAPP Global Privacy Summit 2019 gathered more than 3,600 professionals from around the world for an outstanding program with a truly global focus. Four days of education, guidance, inspiration and connections focused on the big picture of data protection. Thank you to everyone who came out and joined us at our TrustArc / RADAR Welcome Party, stopped by booth #203 to say hi or … Continue reading May Event Spotlight: IAPP Global Privacy Summit, Data Protection World Forum Webinar, IAPP Webinar, CCPA PRIVACY SUMMIT, European Data Protection Days, Privacy Insight Series Webinar, TrustArc Workshop, and GDPR Salon

The post May Event Spotlight: IAPP Global Privacy Summit, Data Protection World Forum Webinar, IAPP Webinar, CCPA PRIVACY SUMMIT, European Data Protection Days, Privacy Insight Series Webinar, TrustArc Workshop, and GDPR Salon appeared first on TrustArc Blog.

TrustArc to Sponsor IAPP Global Privacy Summit 2019

TrustArc is excited to be part of the IAPP Global Privacy Summit in Washington, DC this week! The 2019 Summit will gather more than 3,600 professionals from all over the globe for an engaging program full of privacy experts. The conference features four days of education, guidance, inspiration and connections that will spotlight the big picture of data protection. To kick the conference off, TrustArc is hosting a Welcome Party with partner RADAR on Wednesday, May 1st. Clients, partners and friends will get together over drinks and food to network and touch base before diving into the following day’s first … Continue reading TrustArc to Sponsor IAPP Global Privacy Summit 2019

The post TrustArc to Sponsor IAPP Global Privacy Summit 2019 appeared first on TrustArc Blog.

TrustArc Partnering with IAPP to Benchmark Privacy Tech Adoption

As privacy tech continues to proliferate and embed itself in day-to-day privacy functions in the enterprise, the IAPP, together with TrustArc, seeks feedback to better understand how privacy pros are adopting the privacy tech tools outlined in our Privacy Tech Vendor Report. This year’s survey builds on a similar one we did last year looking at how privacy tools are acquired and deployed. Now, with obligations that both the EU General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) are imposing on organizations, are we seeing a move toward greater tech adoption? The survey should only take about … Continue reading TrustArc Partnering with IAPP to Benchmark Privacy Tech Adoption

The post TrustArc Partnering with IAPP to Benchmark Privacy Tech Adoption appeared first on TrustArc Blog.

Privacy Shield Approaching Its 3 Year Anniversary in Operation

With data protection-related activity bustling around the world–from “Brexit” and GDPR enforcement to the approaching CCPA and exciting developments in the APAC region–it’s understandable to lose track of the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks. What follows are responses to the most frequent Privacy Shield inquiries TrustArc is hearing from our customers. Is Privacy Shield Still Valid? Yes – in fact, Privacy Shield is fast approaching its three year anniversary on July 12th. Since its 2016 adoption, Privacy Shield has remained a sound, scalable and steady legal transfer mechanism for U.S. entities seeking to receive personal data from the EU … Continue reading Privacy Shield Approaching Its 3 Year Anniversary in Operation

The post Privacy Shield Approaching Its 3 Year Anniversary in Operation appeared first on TrustArc Blog.

The Giant Awakens – China’s Cybersecurity Law (CSL) and Data Protection Obligations

While many of us were focused on the European Union’s GDPR and California’s Consumer Privacy Act (CCPA), the giant on the other side of the world implemented China’s Cybersecurity Law (CSL) in June 2017. While CSL laid out broad data protection principles, there were noticeable gaps related to implementation and overall scope. To operationalize and further clarify CSL scope, the Chinese government instituted six systems: the Internet Information Content Management System; the Cybersecurity Multi-Level Protection System (MLPS); the Critical Information Infrastructure Security Protection System; the Network Products and Services Management System; the Cybersecurity Incident Management System; and the Personal Information … Continue reading The Giant Awakens – China’s Cybersecurity Law (CSL) and Data Protection Obligations

The post The Giant Awakens – China’s Cybersecurity Law (CSL) and Data Protection Obligations appeared first on TrustArc Blog.

TrustArc Recognized as 2019 Bay Area Best Places to Work

TrustArc, the leading data privacy management company, has been recognized as a winner of the 2019 Bay Area Best Places To Work, an awards program presented by the San Francisco Business Times and the Silicon Valley Business Journal!   Select employers from the Bay Area were named winners of the awards program, held on April 18, 2019. These winning organizations were honored for having created exceptional workplaces that their employees value highly. Award applicants were evaluated and ranked across five categories according to the number of Bay Area employees. The ranking found companies in the region whose employees rate them as … Continue reading TrustArc Recognized as 2019 Bay Area Best Places to Work

The post TrustArc Recognized as 2019 Bay Area Best Places to Work appeared first on TrustArc Blog.

Managing Privacy Compliance in the Cloud

The number and complexity of regulations addressing data privacy continues to increase significantly. Companies offering cloud-based services must comply with these regulations or risk losing business due to customer trust issues and/or potential fines and other legal action. Compliance with regulations like the GDPR and CCPA requires companies to address a wide range of items, including privacy assessments, cookie consent, and data subject access requests. The digitization of data has inevitably led to a myriad of data privacy laws that span the globe. These regulations all need to be considered when doing business in the respective countries/regions to which the … Continue reading Managing Privacy Compliance in the Cloud

The post Managing Privacy Compliance in the Cloud appeared first on TrustArc Blog.