A Breathing Room for Businesses | Court Decision Postpones CPRA Enforcement Until March 2024

In a recent turn of events, the Superior Court of Sacramento County, California, postponed the enforcement of the California Privacy Rights Act (CPRA) regulations until March 29, 2024. The court’s order came just a day before the regulation's enforcement date, i.e., July 1, 2023. The much-anticipated delay in the enforcement ... Read More

Safeguarding Enterprise Data | The Significance of Google’s Privacy Policy Update

Privacy and Proprietary Data Protection in the Face of Google's Policy Amendment In a noteworthy policy revision announced on July 1st, Google has made a significant update to its privacy policy, warranting the attention of business leaders across industries. This update marks a departure from previous practices, as Google expands ... Read More

A Guide to Navigating the UK DPA’s Updated Guidance on Subject Access Requests (SARs) for Employers

The Information Commissioner's Office (ICO), the United Kingdom’s data protection authority, released new guidance on May 24, 2023, to assist organizations and employers in responding to subject access requests (SARs) from current and former employees in a responsible manner and within the stated time frames while ensuring that employees can ... Read More

Email Marketing Legal Requirements: A Comprehensive Guide for Businesses

The first instance of email marketing dates back to 1978, driving $13 million in sales and demonstrating its sheer impact and industry value. Since then, email marketing has evolved and proved to be powerful and effective tool organizations increasingly leverage to connect with their audience and improve engagement. According to ... Read More
GDPR Data Mapping: What it is and How to Comply?

GDPR Data Mapping: What it is and How to Comply?

In 2016, the European Commission replaced its long-existing Data Protection Directive with a modernized version, the General Data Protection Regulation (GDPR). The GDPR is based on the EU Charter of Fundamental Rights, which considers personal data protection as an individual’s fundamental human right. The GDPR aims to protect personal information ... Read More

Between Innovation and Oversight: OpenAI Faces Global Regulatory Backlash

The last few months have seen a rapid proliferation of artificial intelligence capabilities and technological leaps. Conversational AI models like ChatGPT have been by far one of the most captivating results of these advancements. However, as these models grow in popularity, regulatory bodies worldwide have begun to raise concerns about ... Read More

China’s New Measures for Security Assessment of Data Exports: Explained

The Cyberspace Administration of China (CAC) recently deliberated and adopted “Measures for Security Assessment of Data Exports.” These came into effect on 1st September 2022. Considering the volume of data consistently being shared to and from China, these measures hold critical importance for organizations worldwide. These measures, elaborated in 20 ... Read More

ITAR and Encryption | What You Need to Know

Protecting user data, especially sensitive data, is the primary objective of data regulations. In a world where cybersecurity incidents are rampant, losing sensitive data to threat actors can put a user in significant danger. However, imagine a set of sensitive data, which is linked to defense-related goods like long-range missiles ... Read More

Insights into the Digital Services Act: Unveiling the First Designated Very Large Online Platforms and Search Engines

The European Union’s Digital Services Act (DSA), which aims to improve consumer rights and protections in the digital realm and strengthen legal certainty, fairness, and harmonization of laws that apply to digital service providers, saw the adoption of the first designation decisions by the European Commission on April 25, 2023 ... Read More

China’s New Rules for Personal Information Protection Certification: All You Need To Know

The Cyberspace Administration of China (CAC) and the State Administration of Market Regulation (SAMR) announced, on November 18, 2022, a new authentication certification rule (“Rules”) related to implementing personal information protection. The new certification is meant to ensure that all organizations processing users' data have the appropriate mechanisms in place ... Read More