Transparency and privacy of personal data are core concepts embedded in recent legislation such as the GDPR (General Data Protection Regulation). Other regions are seeing similar legislation updates and certifications to restrict the effects of new technology on personal freedom.
In the US, these include the California Consumer Privacy Act of 2018 (CCPA), causing a shift in the landscape of data privacy law across the country, and the amendment to the California Online Privacy Protection Act (CalOPPA), which requires privacy policies to include certain Do Not Track (DNT) disclosures. HIPAA (the Health Insurance Portability and Accountability Act) sets the standard for protecting sensitive patient data. There are also key federal laws which prevent 'unfair and deceptive practices' and make sure children's data is protected.
Other relevant legislation includes Canada’s CIPP/C (Certified Information Privacy Professional/Canada), Mexico Federal Protection Law, the POPI Act in South Africa, the Singapore Personal Protection Act, Turkey’s Data Protection Law (KVKK), and Australian data privacy regulations and the New Zealand Privacy Act 2020.
Increasing awareness and associated legislation have a massive impact on businesses and their data security obligations.
EPI-USE Labs can help you to navigate this complex and critical field with our SAP Data Privacy Suite and associated services, including our Privacy Comply methodology.