As 2020 draws to a close, we reflect on the top data privacy updates that have shaped the industry this year. The privacy industry is certainly dynamic, this year has presented a wealth of new legislation and regulatory updates, and privacy professionals around the world have risen to the challenges presented. Let’s take a look back on the top data privacy updates of 2020.
Data Privacy in 2020: 10 Moments That Shaped the Year is a report put together by OneTrust DataGuidance, highlighting the most significant moments of the year. The new report features privacy developments relating to international data transfers, cookies, and artificial intelligence and highlights regional updates and guidance issued by various supervisory authorities.
The Schrems II Decision
One of the most notable data privacy updates of 2020 was the Schrems II case. The CJEU’s decision invalidated the EU-US Privacy Shield and cast doubt over the use of Standard Contractual Clauses (SCCs), resulting in significant changes to the data transfer mechanisms that organizations rely on. Following this ruling the EDPB released guidance on supplementary measures for transfers, and the European Commission released its revised SCCs, both of which have been put out for public consultation.
Privacy in the Face of a Pandemic
A 2020 review wouldn’t be complete without mention of COVID-19 The pandemic posed numerous challenges for data privacy in 2020, including a swift pivot to working from home for organizations, the development of contract tracing apps, and many organizations feeling the need to step up their privacy programs. The pandemic also caused delays to various data privacy updates, as many regulatory changes around the world were pushed back to accommodate new ways of working and due processes being followed.
2020 kicked off with the CCPA entering into effect on 1 January 2020 and marked the start of a new era in privacy legislation in California. However, in November the CPRA (California Consumer Privacy Rights Act or CCPA 2.0) was passed, introducing a range of updates including a Californian data protection authority, new consumer rights, and various obligations for contracts between service providers. The CPRA will enter into effect on 1 January 2023, so watch this space.
Access the full report to find out more about this year’s top 10 moments in Data Privacy. For more information on how you can stay on top of the latest data privacy updates head over to OneTrust DataGuidance.
Next steps on 2020’s data privacy updates:
- Access the report: Data Privacy in 2020: 10 Moments That Shaped the Year