IAPP Staff Writer Alex LaCasse reports from the IAPP's Navigate Leadership Retreat in Portsmouth, New Hampshire about how policymakers and stakeholders view novel legal and copyright issues associated ...

This report provides insights on building an AI governance program and professionalizing AI governance.

A brief history of the General Data Protection Regulation (1981-2016) This resource provides a detailed timeline of the EU GDPR from 1981 through 2016.

This post analyzes CPRA's categories of sensitive personal data, company obligations, whether CPRA is a good model for regulating sensitive personal data.

A View from DC: California enforcement shows the continued importance of consumer expectations We are in the midst of a global pandemic, and the need to access COVID-19-related data has become ...

Alex Wall Contributor AIGP, CIPP/E, CIPP/US, CIPM, FIP 11 Minute Read ...

The Data Care Act of 2023, sponsored by Sen. Brian Schatz, D-Hawaii, imposes various duties — a duty of care, duty of loyalty and duty of confidentiality — on online service providers. The duty of ...

Weeks after the Austrian DPA ruled Google Analytics violates the GDPR, the CNIL reached a similar decision.

The most populous countries without a comprehensive national privacy law include the U.S., Pakistan, Bangladesh, Iran and Iraq, with Pakistan and Bangladesh having draft legislation. While the U.S.

In a widely discussed move,Meta gave Facebook and Instagram users the choice between paying for an ad-free experience or keeping the services free of charge using ads. The legal reality behind that ...

Researcher and legal counsel Furkan Güven Taştan outlines amendments to Turkey's Personal Data Protection Law, effective 1 June.

The decision by schools across the world to move to online learning has only exaggerated preexisting and fresh privacy issues about the technology facilitating virtual learning experiences. With their ...