• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer

My TechDecisions

  • COVID-19 Update
  • Best of Tech Decisions
  • Topics
    • Video
    • Audio
    • Mobility
    • Unified Communications
    • IT Infrastructure
    • Network Security
    • Physical Security
    • Facility
    • Compliance
  • RFP Resources
  • Resources
  • Podcasts
  • Subscribe
  • Project of the Week
  • About Us
    SEARCH
Compliance

Leading The Way in Discussions for National Privacy Laws

With the massive amounts of data being collected and analyzed – and a number of companies abusing the use of that data recently – is it time to introduce privacy laws to keep information safe?

December 10, 2018 Matt Dumiak 1 Comment

Johnson Controls Tempered Networks

Business and consumers continue to discuss privacy regulations and legislation. Data breaches, data vulnerabilities, and compromised private information is released in the news almost daily. Legislation has recently been proposed for individual states regarding data privacy regulations head-on. Virginia, Vermont, Colorado, and New Jersey have all introduced related privacy regulations most recently. California recently set themselves apart in the privacy space with the adoption of the California Consumer Privacy Act (CCPA), which gave citizens the rights to not only protect their own data, but to obligate businesses to disclose exactly which information has been collected about them.

At the federal level, the United States has yet to propose a national privacy bill. Vermont recently implemented a law regulating data broker companies that buy and sell personal information. With the new law, brokers must disclose what information they collect as well as allow customers to opt out of collection. Furthermore, consumers can sue data brokers if they sell any information that causes illegal discrimination. A similar law has also been proposed in Colorado that is broader, yet specifically manages personal identifying information. Individual states seem to be leading the way for data privacy regulation discussions.

International regulations have also played a significant role in the privacy discussion, specifically following enforcement of the GDPR (General Data Privacy Regulation) in the European Union (EU).

These regulations have certainly contributed to the movement towards consumerism and prompted businesses in the United States to rethink data collection and management, considering how violating these regulations could adversely affect their business and brand. Many organizations are asking themselves “am I liable and governed by the legislation in the EU?” For many, the answer is yes. More specifically, any website that offers goods or services to EU natural persons is subject to the GDPR. The discussion has further prompted organizations to question whether or not they are governed by similar laws in the United States.

Since the introduction of the CCPA, several senators have proposed policy options for national legislation on data security and privacy. Proposed bills have had a GDPR-like flavor that is similar in scope to the international regulation. If the U.S. were to adopt similar regulatory standards, business processes and products that handle personal data would need to be built to include data protection by design and default.

Matt Dumiak, Director of Privacy at CompliancePoint has over 10 years of experience with Information Security, Cyber Security, and Risk Management. His knowledge spans across multiple industries and entities including healthcare, government, card issuers, banks, ATMs, acquirers, merchants, hardware vendors, encryption technologies, and key management.

Regardless of business size, the magnitude of data collected, shared or mismanaged is more concerning considering the sensitivity of private information in which every-day people entrust these organizations to protect. As the conversation around regulation increases, there has been much talk about what a national privacy law might look like, and furthermore how state regulations would affect organizations doing business across the U.S.

At the forefront of privacy-law related issues are very visible and widely used big technology companies. These big technology players have demonstrated some interest in getting ahead of possible regulation by possibly drafting and proposing possible regulatory standards themselves possibly because there is a monetary desire for these bills to be aligned with their terms, rather than abiding by laws voted in by citizens of the United States.

Big data companies such as Facebook, Google, and Twitter have all been amongst discussions, and various reports have been released stating the companies are “in-favor” of such legislation. This push has left some lawmakers feeling uneasy, considering these companies are likely seeking to be involved in legislation to sway technicalities in their favor.

In conclusion, states will likely continue to pave the way for privacy regulations. Until formal national legislation is adopted, and voters see these initiatives on their ballots, states will continue to implement their own forms of data protection. Problems will continue to rise for businesses as states implement their own laws that non-regulated states must abide by. A national privacy law could make this transition easier among U.S. business owners, as one uniform standard can be applied to all.

Tagged With: Cyber Security, Data Collection, Legal

Related Content:

  • Mindbody wellness tech WalkMe Mindbody Enlists WalkMe to Drive Digital Transformation
  • Zero Trust, ZTNA, Syxsense Syxsense Unveils New Module for Zero Trust Compliance
  • Insider Risk, cyber risk, insurance, cybersecurity GlobalData GlobalData: Cybersecurity Revenue in Insurance Set to Grow…
  • This Week in IT, IT News This Week in IT: Google Meet, Cisco Attack,…

Free downloadable guide you may like:

  • Shadow ITBlueprint Series: How to Reduce Shadow IT

    The distributed work model gives employees the flexibility they demand, but it can lead to shadow IT and introduce unnecessary security risk. Research finds that this distributed work environment is leading to IT management blind spots and shadow IT.

Reader Interactions

Trackbacks

  1. Harris Beach Launches Software Company to Address Gaps in Cybersecurity Regulatory Compliance - My TechDecisions says:
    February 27, 2019 at 4:00 pm

    […] a software company focused on helping organizations comply with domestic and international regulations and measure their success in meeting those […]

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Get the FREE Tech Decisions eNewsletter

Sign up Today!

Latest Downloads

Shadow IT
Blueprint Series: How to Reduce Shadow IT

The distributed work model gives employees the flexibility they demand, but it can lead to shadow IT and introduce unnecessary security risk. Resea...

Hybrid Work webinar
Featured Webcast: Collaboration 2.0 — Where Are We Now?

In this webinar, subject matter experts discuss the transformation of the workplace, the rise of hybrid workers, the importance of open connectivit...

guide to end user training cover
Pro Tips for Conducting End User Training

Effective trainings are the glue that can make the difference following a new technology implementation that your team has spent so much time, effo...

View All Downloads

Would you like your latest project featured on TechDecisions as Project of the Week?

Apply Today!
Sharp Microsoft Collaboration HQ Logo

Learn More About the
Windows Collaboration Display

More from Our Sister Publications

Get the latest news about AV integrators and Security installers from our sister publications:

Commercial IntegratorSecurity Sales

AV-iQ

Footer

TechDecisions

  • Home
  • Welcome to TechDecisions
  • Subscribe to the Newsletter
  • Contact Us
  • Media Solutions & Advertising
  • Comment Guidelines
  • RSS Feeds
  • Twitter
  • Facebook
  • Linkedin

Free Technology Guides

FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets

View all Guides
TD Project of the Week

Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.

Enter Today!
Emerald Logo
ABOUTCAREERSAUTHORIZED SERVICE PROVIDERSTERMS OF USEPRIVACY POLICY

© 2022 Emerald X, LLC. All rights reserved.