Privacy rights under the GDPR and CCPA: Some basic comparisons
Zuong Dang
Equity & Advocacy Lead | Centre for Population Genomics - working to build a more equitable future for genomic medicine
The European Union’s General Data Protection Regulation (GDPR), since taking effect in May 2018, has become one of the world's most far reaching privacy laws. The GDPR creates a push for regulators and lawmakers worldwide to adopt a more stringent approach to privacy and consumer data protection.
The California Consumer Privacy Act (CCPA), now often referred to as "GDPR-lite", becomes effective on 1 January 2020. Privacy scholars and professionals are currently forecasting its impacts on both U.S and international businesses with customers in California. CCPA is important because it represents the first real and comprehensive privacy legislation in the U.S.
To summarise the application, scope, and privacy rights under both the GDPR and CCPA, I have put together the following comparison table (with legal citations), using my knowledge/practice as a privacy lawyer and my current training for the Certified Information Privacy Manager (ANSI/ISO standard 17024:2012) program:
? 2019 Zuong Dang