GDPR-like Regulations Spreading throughout U.S.?
The European Union may have beat the U.S. to enacting sprawling legislation that forces companies to diligently protect the data of its consumers, but we’re seeing the seas of change come stateside – and it could be sooner rather than later. Due to public pressure, several states have implemented – or are in the process of implementing – regulations which share the same goals as the EU’s General Data Protection Regulation (GDPR).
California was the first to enact such protections with the California Consumer Protection Act (CCPA), which provides several rights to residents of the state that allows them to know what personal data is being collected about them, access it, request its deletion and opt out of having their personal data collected. All for-profits that do business in California (within certain thresholds) are required to comply with the law, which goes into effect January 1, 2020.
The spread of copycat legislation isn’t stopping in California — close to 12 other states have either drafted or passed similar acts in the months since the CCPA was passed. There have been calls from industry insiders for data privacy laws from the federal government for a number of reasons, mainly to standardize the process instead of forcing businesses to adhere to potentially 50 different standards.
The federal law may not happen any time soon, but there’s no reason your organization should not prepare for some sort of additional compliance mandates regarding data privacy in the near future. 2W Tech can help. 2W Tech has a Cyber Security Compliance Program that is designed to support our client’s compliance obligations. Most organizations must abide by and maintain a standard for controls that safeguard the confidentiality and privacy of information stored and processed. We work hand in hand with you to learn more about your required compliances, help obtain proper agreements, and access relevant system architecture information. Give us a call today to get started on your journey to achieving compliance.