Data Privacy Highlights: June 26

This week in data privacy we are covering...

?? Rhode Island's Comprehensive Privacy Bill Raises Patchwork Misalignment Concerns

?? Data Privacy Concerns Linger Two Years After End of Roe v. Wade

?? Google's Children’s Privacy Lawsuit

?? Revolutionizing Privacy: Automation, AI, and OneTrust’s Innovative Approach w/ Kabir Barday CEO of OneTrust

?? Vermont Governor Vetoes Data Privacy Bill: What It Means for Your Business

?? The Dance of Data Privacy: How E-commerce Marketers Can Win Trust and Drive Sales

?? Why the U.S. Surgeon General Wants a Warning Label on Social Media and How You Can Manage Your Usage

?? Marketing Sits in a Gray Zone Under EU AI Act

4?? Ways Data Privacy Laws Are Reshaping Business Practices

?? Texas Privacy Enforcement Heats Up!

and...

??? Operationalizing Privacy: A Blueprint for Success

----------

Welcome to this edition of our data privacy new newsletter! This week, we explore the evolving landscape of data privacy laws and their impact on businesses. From Rhode Island's unique privacy bill and its implications for compliance to lingering data privacy concerns two years after the end of Roe v. Wade and the four ways data privacy laws are reshaping business practices, we're diving into the key issues shaping the data privacy. Let's navigate these changes together and stay ahead of the curve!

Rhode Island's Comprehensive Privacy Bill Raises Patchwork Misalignment Concerns

Rhode Island’s new comprehensive privacy bill has stirred the pot with its unique provisions that diverge from other state laws. With significant omissions like the lack of a definition for personally identifiable information (PII) and universal opt-out mechanisms, businesses are left in a quandary about compliance. The bill, if enacted, will require entities to disclose third parties they sell or "may sell" PII to, creating a compliance challenge without clear guidelines.

The inconsistencies across state laws make it crucial for businesses to stay informed and adaptable. This bill highlights the need for robust internal data management practices to navigate varying state requirements effectively. Read the full article?here.

Data Privacy Concerns Linger Two Years After End of Roe v. Wade

Since the overturn of Roe v. Wade, there has been heightened concern over how data might be used to enforce abortion bans. Despite fears, most prosecutions have used more traditional investigative methods. However, states are implementing laws to protect data privacy, such as Washington's "My Health, My Data Act," which requires extra steps to secure health data and prohibits geofencing near clinics.

As states strengthen data privacy laws, companies must ensure they do not hold unnecessary sensitive data that could be targeted in legal actions. This is a critical step in protecting user privacy and maintaining trust. Read the full article?here.

Google Can’t Shake Children’s Privacy Lawsuit

Google faces a lawsuit for allegedly violating the Children’s Online Privacy Protection Act (COPPA) by allowing apps to track and collect children’s data without parental consent. The court's decision to proceed with the claims highlights the importance of stringent compliance with children's privacy laws.

With increasing scrutiny on how children’s data is handled, businesses must prioritize COPPA compliance and ensure that their practices are transparent and lawful. Read the full article?here.

Revolutionizing Privacy: Automation, AI, and OneTrust’s Innovative Approach

Kabir Barday Founder, CEO, and Chairman of the Board at OneTrust , joins Jodi and Justin Daniels on the She Said Privacy/He Said Security to discuss OneTrust’s innovative approach to privacy, automation, and AI. Kabir shares AI and privacy trends from Trust Week 2024, how OneTrust champions responsible use of data and AI, and how companies can evolve their privacy programs at various maturity levels.

Here’s a glimpse of what you’ll learn:

• Kabir Barday’s career journey and his impetus for starting OneTrust
• Emerging AI and privacy trends, themes, and takeaways from TrustWeek 2024
• Responsible use of data and AI: How OneTrust is expanding its efforts into broader business initiatives
• How OneTrust helps organizations navigate regulatory complexities
• How OneTrust leads in privacy automation through innovative practices
• Steps companies can take to effectively evolve their privacy programs at different maturity levels
• Kabir’s personal privacy tips

Listen to the full podcast?here.?

Vermont Governor Vetoes Data Privacy Bill: What It Means for Your Business

Vermont’s governor has vetoed a comprehensive data privacy bill that aimed to crack down on companies' misuse of personal data and would have allowed consumers to file civil lawsuits against violators. The Democrat-controlled Legislature plans to override this decision, citing strong support for consumer protection from scams and identity theft.

Businesses must stay vigilant and proactive in their data privacy practices. Ensure your company’s data handling practices are transparent and compliant with evolving regulations to avoid legal repercussions and build consumer trust. Read the full article?here.

The Dance of Data Privacy: How E-commerce Marketers Can Win Trust and Drive Sales

Navigating data privacy in e-commerce is akin to a delicate dance. Companies must balance the desire to personalize customer experiences with the necessity of respecting consumer privacy. Over-collecting data can erode trust, while transparent privacy notices and ethical data practices can enhance it.

Make your privacy notices clear, accessible, and user-friendly. Use data minimally and transparently to build a trustworthy relationship with your customers, which can lead to increased loyalty and sales. Read the full article?here.

Why the U.S. Surgeon General Wants a Warning Label on Social Media and How You Can Manage Your Usage

Let’s be real—social media can be a double-edged sword. It connects us in ways we never imagined, but the negative impacts are becoming more apparent. Depending on your age, you might brush off the issues or go to extremes like switching to a flip phone to escape the social media chaos. And for parents, keeping kids safe online feels like a never-ending battle against new apps and platforms.

U.S. Surgeon General Vivek Murthy wants Congress to add warning labels to social media apps to highlight potential harms, especially for young people. This push is backed by concerns over mental health issues linked to social media, such as anxiety, depression, and cyberbullying. Read the full article?here. ?

Marketing Sits in a Gray Zone Under EU AI Act

The upcoming EU AI Act presents challenges for marketers, especially around the use of AI in advertising. While the act focuses on high-risk systems, the ambiguity in defining these risks leaves room for interpretation and potential compliance issues.

Begin documenting your AI processes now, even if the guidance is not yet fully clear. This proactive approach will help your business stay ahead of regulatory changes and avoid compliance pitfalls. Read the full article?here.

Four Ways Data Privacy Laws Are Reshaping Business Practices

Data privacy laws are not just about compliance; they are reshaping how businesses operate. From asking critical questions about data collection to prioritizing transparency and integrating privacy features into products, companies can turn regulatory requirements into competitive advantages.

Embrace data privacy as a core aspect of your business strategy. Transparency, data minimization, and robust privacy features can differentiate your brand and foster consumer trust. Read the full article?here.

Texas Privacy Enforcement Heats Up!

Texas has launched a rigorous enforcement sweep targeting over 100 companies for failing to register as data brokers by the March 1, 2024 deadline. These businesses now face penalties of up to $10,000 within a year. This crackdown is part of a broader initiative led by Texas Attorney General Ken Paxton to enforce various privacy laws, including the Data Privacy and Security Act, which takes effect on July 1, 2024.

The Texas AG’s proactive stance underscores the importance of compliance with data privacy laws. Companies should assess their data handling practices and ensure they meet all regulatory requirements to avoid hefty fines and reputational damage.

Review your data collection and processing practices and ensure compliance with relevant state and federal laws. Develop a comprehensive information security program if you haven't already. Read the full article?here .

Operationalizing Privacy: A Blueprint for Success

In the latest episode of She Said Privacy/He Said Security, Jodi and Justin Daniels welcome Aaron Mendelsohn , Director – Privacy Officer at the LEGO Group in Denmark,?to discuss practical strategies for operationalizing privacy within organizations. Aaron emphasizes integrating people, processes, and technology to achieve effective privacy management. The discussion also underscores the value of targeted privacy training tailored to specific business roles and how privacy professionals can successfully adapt and evolve privacy strategies as business needs change.

Here’s a glimpse of what you’ll learn:

• Aaron Mendelsohn’s career journey and why he became a privacy officer
• What operationalizing privacy means to Aaron and his approach to it
• Thoughts on the misconception that privacy software alone is sufficient for operationalizing privacy
• Insights on what makes a successful privacy professional in any organization
• Importance of tailoring privacy training sessions to specific roles and departments
• Aaron’s top personal privacy tip

Listen to the full podcast?here.

Want more resources?

Check out our multiple FREE business guides on data inventory, privacy notices, PIAs, AI, and much more at www.redcloveradvisors.com