Blog - privacy regulatory trends

IAPP Global Privacy Summit 2023 –  Here’s What You Missed

The 2023 IAPP Global Privacy Summit was a huge success in Washington, D.C. The RadarFirst team joined over 5,000 passionate privacy professionals from around the globe to discuss privacy trends and best practices, and also share our intelligent solution with organizations looking to build trust and scale their privacy operations.

Privacy Regulatory Trends: CPRA and Beyond

The CPRA came into effect on January 1, 2023. While the privacy law’s expanded privacy rights are great for consumers, it complicates the work of privacy teams, especially as other states adopt their own versions of these expansions. Continue reading to learn more about the CPRA and how you can simplify compliance.

Reduce Privacy Risk to Build Investor Confidence

Armed with tools and their in-depth understanding of the organization’s privacy risks and requirements, the privacy team can conduct tabletop exercises to assess the most likely worst-case scenarios, providing valuable insights to executive decision-makers.

Privacy Regulatory Trends: Personal Information and Biometric Data Privacy Laws

As more states seek to regulate and protect biometric data, companies that collect, use and store biometric data should consider creating and implementing policies and procedures that incorporate the appropriate security, notice, and consent requirements, even if they are not currently required to do so by law. However, until all 50 states amend their definitions of personal information to include biometric data, privacy leaders must navigate a patchwork of laws and regulations when performing incident risk assessments.

Incidents, Breaches, and the Human Factor

This year’s Verizon Data Breach Investigations Report found that 85% of breaches involve “the human element.” And this high commonality between incident and data breach causes has a number of implications for privacy teams.

Regulatory Trends: Texas Data Breach “Wall of Shame”

For privacy and compliance leaders, notifiable privacy data breaches aren’t ideal, but they are necessary. In September 2021, Texas house bill House Bill 3746 will allow the state attorney general to publicly list organizations who have issued data security breach notifications. At an important moment for privacy regulation, does this regulatory environment encourage organizations to notify when obliged, or does it discourage compliance with legislation?