Regulations

November 22, 2021 -

New Final Rule Issuance: Computer-Security Incident Notification Requirements for Banking Organizations and Service Providers

The Office of the Comptroller of the Currency (OCC), the Board of Governors of the Federal Reserve System (Board) and the Federal

November 19, 2021 -

The Ultimate Guide to Thai PDPA Compliance

What is Thai PDPA Compliance? Thai PDPA compliance means data controllers and data processors that are covered by the

November 12, 2021 -

Cybersecurity Maturity Model 2.0: New Strategic Implications from GRC to VRM 

The Cybersecurity Maturity Model Certification (CMMC) was published in January 2020 by the US Department of Defense. The model established a new method

November 8, 2021 -

Firefox Joins Other Browsers Implementing Global Privacy Control

Mozilla Firefox is the latest browser implementing Global Privacy Control (GPC), taking initiative to help users control their privacy with a “do not sell my personal data” setting

November 4, 2021 -

Republican Energy & Commerce Committee Introduce Draft US Federal Privacy Bill

Many have tried, all have failed. But there is a new attempt at establishing a comprehensive US federal privacy

November 1, 2021 -

Cyber Security Awareness Resource Hub

Welcome to the Cyber Security Awareness Resource Hub!  This page is your one-stop shop for all things cyber security

October 26, 2021 -

CPRA Employee Privacy Rights

Organizations that fall under the scope of the CCPA won’t be strangers to complying with consumer rights requests. Employees

October 12, 2021 -

From CCPA to CPRA: 6 Steps to Compliance

In this blog, we highlight the six steps to go from CCPA to CPRA compliance. The California Privacy Rights

October 11, 2021 -

California Governor Signs Assembly Bill 694 Amending the CCPA

On October 5, 2021, the California Governor signed Assembly Bill 694 (AB 694) on privacy and consumer protection. AB

October 11, 2021 -

Put a Hold on Hacks: Fight the Phish and Other Common and Emerging Cyberthreats 

Cybersecurity teams are facing larger and more sophisticated cybersecurity threats than ever before. In the last year, there has

October 8, 2021 -

ICO Responds to DCMS Consultation on UK Data Reforms

On October 6, 2021, the UK Information Commissioner’s Office (ICO) published its response to the Department for Digital, Culture,

October 5, 2021 -

CPPA Select Ashkan Soltani as Executive Director

On October 4, 2021, the California Privacy Protection Agency (CPPA) announced the appointment of Ashkan Soltani as the Agency’s

October 1, 2021 -

EDPB Adopts Opinion on Draft South Korea Adequacy

On September 27, 2021, the European Data Protection Board (EDPB) adopted its opinion on the European Commission’s draft adequacy

September 27, 2021 -

Ransomware Risk Management: NIST Cybersecurity Framework

The evolution of the cyberattack landscape is continuously evolving, and professionals across industries agree that 2020 and 2021 have been critical

September 27, 2021 -

The Ultimate Guide to CCPA Compliance

What is CCPA Compliance?  The introduction of the California Consumer Privacy Act (CCPA) in 2018 was a turning point

September 26, 2021 -

California Privacy Protection Agency (CPPA) Call for Public Comment on Initial Rulemaking

California voters passed the California Privacy Rights Act (CPRA) on the November 2020 ballot. The CPRA brought with it

September 22, 2021 -

Quebec’s Bill 64 Adopted

On September 21, 2021, the Act to Modernize Legislative Provisions as Regards the Protection Of Personal Information (Bill 64)

September 15, 2021 -

The New SCC Deadline Is Approaching: Are You Prepared?

The deadline for signing old Standard Contractual Clauses (SCCs) into new contractual agreements is approaching. In June 2021, the

September 13, 2021 -

OneTrust Crosses 500 Enterprise and SMB Customers in Brazil, Expands GRC and Data Discovery Capabilities

In just two short years, OneTrust’s presence in Brazil has grown immensely. Today, over 500 Brazil-based companies across sectors

September 10, 2021 -

UK Government Launches Consultation on Data Reform

On September 10, the UK Government launched its consultation on a national data reform that aims to drive innovation

August 31, 2021 -

OneTrust Awareness Training: The Benefits and Latest Course Updates

The growing ubiquity of privacy laws globally has brought with it a greater general awareness of consumer rights and

August 20, 2021 -

China’s Personal Information Protection Law to Take Effect November 1, 2021

On August 20, 2021, China’s Personal Information Protection Law (PIPL) was adopted by the National People’s Congress (NPC) Standing

August 19, 2021 -

The Complexities of Government Records Requests

Records requests under the Freedom of Information Act (FOIA) present their own unique set of challenges in the era

August 13, 2021 -

ICO Launches Public Consultation on Draft International Data Transfer Agreement and Transfer Risk Assessment

On August 11, 2021, the Information Commissioner’s Office (ICO) launched a public consultation on several transfer documents, including its

August 11, 2021 -

The CCPA Metrics Reporting Requirement: What You Need to Know

The California Consumer Privacy Act (CCPA) has been in effect for over a year and a half, but certain requirements

August 4, 2021 -

Data Transfers in a Post-Schrems World

The CJEU’s decision in the Schrems II case changed the way organizations now approach international data transfers.    The invalidation of the EU-US

July 28, 2021 -

IAB Launches CJPP Compendium in Partnership with OneTrust

On July 22, 2021, IAB’s Legal Affairs in partnership with OneTrust and BakerHostetler published a compendium outlining findings from

July 27, 2021 -

Thai PDPA Compliance: How OneTrust Helps [Video]

Thai PDPA Compliance Deadline Thailand’s Personal Data Protection Act (PDPA) was published in the Royal Gazette on May 28,

July 26, 2021 -

The CNIL Issues a Second Series of Non-Compliant Notices

The French Data Protect Authority, the CNIL, is pursuing its global strategy to ensure compliance of companies that use cookies. In a press

July 23, 2021 -

Privacy Laws & Employee DSARs

When you hear the term “data privacy” you likely think of major global consumer privacy regulations such as GDPR,

July 22, 2021 -

OneTrust Announces Government Records Request Automation for FOIA and Public Records Requests

Today, OneTrust announced availability of OneTrust Government Records Request Automation solution. This new technology  helps government entities automate the

July 13, 2021 -

EDPB Final Recommendations: The 6 Step Roadmap (Part 3 of 3)

In this three-part blog series, we take a closer look at the EDPB’s final recommendations on the supplementary measures

July 8, 2021 -

Colorado Privacy Act (CPA) Signed Into Law

On June 7, 2021, The Colorado Privacy Act (Senate Bill (‘SB’) 190) was passed by the Colorado House of

July 6, 2021 -

EDPB Final Recommendations: The 6 Step Roadmap (Part 2 of 3)

The EDPB adopted its final recommendations on the supplementary measures for data transfers from the EU to a third

June 30, 2021 -

The CPO & Vendor Risk Management: Top Challenges & Biggest Opportunities

As the privacy landscape continues to evolve, key focus areas of privacy program management are shifting. A product of

June 30, 2021 -

The Benefits of Combining Data Mapping and Data Residency

More and more countries are creating parameters about data localization. Every policy is a little bit different, with some

June 29, 2021 -

EDPB Final Recommendations: The 6 Step Roadmap (Part 1 of 3)

On June 18, 2021, the EDPB adopted its final recommendations on supplementary measures for transferring data to a third country to help data exporters maintain compliance with EU data protection law. One of the

June 28, 2021 -

European Commission Adopts Two UK Adequacy Decisions

On June 28, 2021, the European Commission adopted two adequacy decisions for the UK. One in relation to the

June 21, 2021 -

Operationalize EDPB Final Schrems II Guidance with OneTrust

On June 18, 2021, the European Data Protection Board (EDPB) adopted its final Schrems II guidance on supplementary measures

June 17, 2021 -

Ecuador’s New Data Protection Law

Ecuador’s new data protection regulation has now become law. The draft Organic Law on the Protection of Personal Data

June 15, 2021 -

China Data Security Law Passed

As digital transformation increases worldwide, cybersecurity teams across the globe are shifting their focus and prioritizing secure data procurement and processing practices. As the criticality of data processing (first highlighted in China in the 2016

June 4, 2021 -

European Commission Adopts New Standard Contractual Clauses (SCCs)

On June 4, 2021, the European Commission adopted two sets of highly anticipated modernized standard contractual clauses (SCCs). The

June 3, 2021 -

Thai PDPA Data Subject Rights: What You Should Know

Thai PDPA Data Subject Rights A key component of the Thai PDPA is the rights prescribed to data subjects

June 1, 2021 -

noyb Cookie Consent Best Practices Guide

On May 31, Max Schrems’ privacy activist organization noyb sent draft complaints to 500+ website owners regarding their cookie

May 28, 2021 -

New DHS Pipeline Cybersecurity Requirements: What do they mean?

In the last year alone, the number of successful, large-scale cyber-attacks has astronomically increased (62% in the last year, to be

May 24, 2021 -

The GDPR Data Subject Rights

The GDPR is one of the most robust global privacy laws in effect today. Created by the European Union (EU) and put into effect in 2018,

May 20, 2021 -

The EU Cloud Code of Conduct Approved by Belgian DPA

On May 20, 2021, the Belgian Data Protection Authority approved their transnational code of conduct (CoC) – the EU

May 18, 2021 -

French Government Announce National Strategy for Cloud Technology

In a press release issued on May 17, 2021, the French government outlined its strategy for the use of

May 17, 2021 -

Understanding the 7 Principles of the GDPR 

The General Data Protection Regulation (GDPR) rewrote the rules on privacy, forcing companies to update their operations and even

May 14, 2021 -

President Biden’s Cybersecurity Executive Order: What will it mean for you?

On May 12, US President Joe Biden issued an executive order on cybersecurity seeking to improve the state of national cybersecurity

May 4, 2021 -

Are You Ready For The Thai PDPA Compliance Deadline?

Compliance with Thailand’s Personal Data Protection Act (‘PDPA’) has been on the horizon for many organizations since it was published in the Thai Government Gazette on

April 16, 2021 -

Complete Guide to General Data Protection Regulation (GDPR) Compliance

What does it mean to be GDPR compliant? This page is regularly updated for accuracy and comprehensiveness. Last update:

March 29, 2021 -

Preparing for Privacy Compliance in Panama

Panama’s Law No. 81 on Personal Data Protection comes into effect on March 29, 2021, bringing a new set

March 25, 2021 -

Announcing OneTrust POPIAConnect

OneTrust is excited to announce the launch of the POPIAConnect local meetings as part of the OneTrust PrivacyConnect series.

March 22, 2021 -

Get Ready for POPIA with OneTrust

Enforcement for South Africa’s Protection of Personal Information Act (POPIA) will begin on July 1, 2021, and OneTrust can help you get ready. With just

March 16, 2021 -

AG Announces Additional CCPA Regulations

The California Attorney General (AG) announced the approval of additional regulations to the CCPA. These additional regulations ban ‘dark patterns’ that delay

March 11, 2021 -

UK Adequacy Decision FAQs: Your Top 5 Questions Answered

The European Commission announced a draft UK adequacy decision on February 19, 2021. A move that will allow data to flow freely between

March 8, 2021 -

OneTrust CNIL Cookie Guidelines Toolkit

On April 1st, the French Data Protect Authority, the CNIL, will begin to enforce its latest cookie guidelines. The

March 4, 2021 -

Maximize Opt-Ins with Consent Rate Optimization

  Today OneTrust launches Consent Rate Optimization, a tool to help organizations personalize user experience and maximize opt-ins while respecting privacy. Take advantage of Consent

March 3, 2021 -

Virginia’s Consumer Data Protection Act Signed into Law

This week, Virginia became the next state after California to officially pass a comprehensive privacy law. The Consumer Data Protection

March 2, 2021 -

HIPAA Compliance: Building a Bridge to a Robust Privacy Program

The Health Insurance Portability and Accountability Act (HIPAA) sets the standard for protecting sensitive patient information. This comprehensive law

February 19, 2021 -

The EU Commission Issues UK Adequacy Decision

The European Commission has today announced the draft UK adequacy decision. This will allow the continued free flow of

February 17, 2021 -

The Council Agrees on Final Mandate for Revised ePrivacy Regulation

The Council of the European Union (the Council) announced that its Member States have agreed on a final negotiating mandate for the revised ePrivacy Regulation, an agreement that signals the

February 15, 2021 -

Virginia’s Consumer Data Protection Act on Track to Become Law

Virginia is the latest state to shape the US privacy landscape, as its Consumer Data Protection Act (CDPA) is set

February 8, 2021 -

OneTrust’s CMP Leads the Consent Management Market: Used on 350,000+ Websites and Apps

Today OneTrust announced it is the most widely used CMP with over 350,000+ websites and applications leveraging technology to manage users consent and

January 28, 2021 -

OneTrust Partners with Global Privacy Control to Help Users Control Privacy

Today OneTrust and Global Privacy Control (GPC) announced their partnership to help users control their privacy with a browser setting to communicate privacy preferences.  OneTrust’s Consent Management

January 19, 2021 -

Global Privacy Overview: A Look Back at 2020

The global privacy landscape has continued to develop rapidly throughout the course of 2020. From Schrems II to the

January 12, 2021 -

CNIL Issues Fine for Emails Sent without Consent

On January 5th, 2020, the CNIL, the French data protection authority, issued a fine for sales prospecting without consent.

January 8, 2021 -

Apple iOS 14 Privacy Features: Maximizing Opt-Ins

In September 2020 new Apple iOS 14 privacy features were released. The updates directly impacts mobile app owners and

December 30, 2020 -

Schrems II and the Latest SCC Updates

In this blog, we are doing a deep dive into the EDPB recommendations for Schrems II and the new

December 30, 2020 -

Your CPRA Questions Answered

The approval of the California Privacy Rights Act (CPRA or CCPA 2.0) has left many organizations with questions about how they will pivot their

December 22, 2020 -

A 2020 Update on Cookies and AdTech

2020 has seen a wealth of regulatory updates around cookies and AdTech. The technology landscape continues to change, and

December 15, 2020 -

Schrems II: Dealing with International Transfers

It’s been a busy time for privacy professionals over the past few months and there is no doubt that

December 10, 2020 -

California AG Releases Fourth Round of Modifications to CCPA Regulations

On December 10, 2020, the California Attorney General released a fourth round of modifications to the Regulations regarding the California Consumer

December 10, 2020 -

How Your Privacy Program is a Competitive Differentiator

45 percent.That’s the number of Americans who’ve had their personal information compromised by a data breach within the last 5

December 9, 2020 -

Balancing Cookie Compliance and User Experience

Understanding cookie compliance amongst the myriad of regulations and guidance that exist globally can be a headache by itself. Couple that with the need

December 2, 2020 -

Global Privacy Laws Update 2020

Global privacy laws have continued to develop rapidly throughout the course of 2020. Significant new laws have entered into force such as the LGPD in Brazil, further sections of POPIA commenced, and

November 27, 2020 -

The Schrems II Impact: EDPB and SCC Updates – Linkedin Live Recap

Each week OneTrust hosts industry experts to discuss the latest privacy, security, data governance, and compliance updates, trends, and developments in the world via

November 23, 2020 -

CPRA – What to Know About Employee Rights

On November 3, 2020, California voters passed the California Privacy Rights and Enforcement Act (CPRA or CCPA 2.0). The CPRA amends

November 23, 2020 -

How Will the Schrems II Decision Impact Your Privacy Program?

The Schrems II Decision is a key ruling by the Court of Justice of the European Union (CJEU), in

November 20, 2020 -

The Artificial Intelligence Landscape

Artificial intelligence (AI) is quickly becoming one of the most critical areas of focus for both businesses and regulatory authorities. We integrate and interact

November 19, 2020 -

CPPA: Canada Proposes Privacy Reform

On November 17, 2020, the Canadian government proposed new legislation to the House of Commons, Bill C-11, which includes

November 12, 2020 -

Schrems II Decision: EDPB Publishes Recommendations

On November 11, 2020, the European Data Protection Board (EDPB) published its “Recommendations 01/2020 on measures that supplement transfer

November 10, 2020 -

CCPA vs. CPRA – What Has Changed?

On November 4, 2020, California voters passed the California Privacy Rights and Enforcement Act (CPRA or CCPA 2.0). The

November 9, 2020 -

Ethics in Privacy and Security

Protecting data privacy is complex. Each time your business collects someone’s personal information, you’re taking on several responsibilities: trust, security,

November 4, 2020 -

What Does the CPRA Mean for Your Privacy Program?

On November 3, 2020, Californians voted the California Privacy Rights and Enforcement Act (CPRA or CCPA 2.0) into law. The

October 26, 2020 -

ICO Publishes Guidance on Subject Access Requests

On October 21, 2020, the Information Commissioner’s Office (ICO) published guidance on subject access requests (SARs), aiming to provide more detailed information and

October 26, 2020 -

OneTrust Launches Spanish AEPD Cookie Consent Fast Track Program

On July 28, the Spanish Data Protection Authority (AEPD) issued updated guidance on the use of cookies based on

October 15, 2020 -

California AG Announces Third Round of CCPA Regulation Revisions

On October 12, 2020, the California Department of Justice gave notice that it was making the third round of

October 12, 2020 -

Overview of the California Privacy Rights Act of 2020 (CPRA or CCPA 2.0)

CCPA 2.0: Key Differences with the CCPA The California Consumer Privacy Act (CCPA), which took effect at the beginning of this

October 6, 2020 -

The Fallout from Schrems II

Each week OneTrust hosts expert privacy professionals to discuss the latest updates, trends, and developments in the privacy world via LinkedIn Live. In this session, Alexis

October 2, 2020 -

Fast Track Your Cookie Consent Based on the Latest CNIL Recommendations with OneTrust

Start implementing the CNIL’s recommendations for your cookie consent today with OneTrust’s new CNIL Cookie Consent Fast Track Program! OneTrust

October 1, 2020 -

Schrems II: What the Decision Means for Your Data Map

In July 2020, the Court of Justice of the European Union (CJEU) declared that the EU-US Privacy Shield was no longer valid as a lawful personal

September 29, 2020 -

DPC Cookie Guidance: Your Top 7 Questions Answered 

On April 6, 2020, the Irish Data Protection Commission (DPC) released a report explaining the findings following a cookie

September 25, 2020 -

LGPD vs. GDPR

Inspired by the European Union’s General Data Protection Regulation (GDPR), Brazil’s (Lei Geral de Proteção de Dados or LGPD) regulates how companies collect, store, handle, and share personal data.   Who the LGPD Impacts 

September 14, 2020 -

OneTrust Expands Brazil Operations to Support LGPD Compliance

With the LGPD effective date sometime within this month, and companies around the globe working to comply with Brazil’s

September 3, 2020 -

OneTrust Supports Google’s Newest Solution: Consent Mode

With recent stay-at-home orders, millions of consumers are creating and reinforcing new online buying behaviors and habits. Buyers are

September 1, 2020 -

Operationalize the Schrems II Decision with OneTrust‘s Free Schrems II Solutions

Start operationalizing the recent Schrems II ruling with OneTrust’s free Schrems II Solutions!  The solutions help organizations identify existing

August 28, 2020 -

What Are the Differences Between CCPA and GDPR and LGPD?

The data security space heated up in 2020. Enforcement of CCPA officially started on July 1st and in August

August 27, 2020 -

Fast Track Your LGPD Implementation with OneTrust

Get your LGPD implementation on the fast track with OneTrust’s new program! With a range of resources and services,

August 25, 2020 -

Final CCPA Regulations Released

On August 14, the California Attorney General announced that the CCPA Regulations had been officially approved by the Office

August 11, 2020 -

Get Your Irish DPC Cookies Implementation Started with OneTrust

Get your Irish DPC Cookies implementation started with OneTrust’s new Tast track Program! With a range of services and

August 6, 2020 -

OneTrust Expands OTT (Over-the-Top) CMP Support for Apple TV, Android TV, Roku, and more

OneTrust today announced expanded over-the-top (OTT) compliance capabilities, enabling publishers and advertisers to capture consent and preferences from within

August 3, 2020 -

Keeping CCPA Compliant with Facebook’s Limited Data Use

The CCPA enforcement date of July 1 has recently passed, but there are still areas of the regulation that

July 31, 2020 -

Update About Proposed Federal Privacy Laws

California’s Consumer Privacy Act (CCPA) has made states truly consider how they expect businesses to handle individuals’ personal information.

July 28, 2020 -

Data Governance in the Age of COVID-19

In just a matter of weeks, the COVID-19 pandemic has turned our entire world upside down. To stem the

July 28, 2020 -

Regional Privacy Legislation Across the Globe

The global privacy landscape is fractured and rapidly evolving. When GDPR first hit news cycles, businesses rushed frantically to

July 24, 2020 -

India’s Personal Data Protection Bill

As the world continues to struggle with delays caused by COVID-19, India has delayed the review of its new data privacy legislation, the Personal Data

July 22, 2020 -

Get Your IAB TCF 2.0 Implementation Started Same Day with OneTrust

The IAB TCF 2.0 is right around the corner and companies are rushing to fast track their implementation ahead

July 7, 2020 -

AI & Data Protection Law

Companies today are finding ways to be more efficient and replace the timely, complex human-based tasks with technology. Innovative technology, like artificial intelligence (AI), streamlines

June 25, 2020 -

OneTrust Assessment Automation Technology Aligned with the CNIL PIA Methodology

The OneTrust Assessment Automation privacy impact assessment (PIA) technology is officially aligned with the CNIL’s (the French Data Protection

June 18, 2020 -

California Senate Proposes CCPA Amendments

On June 11, 2020, the California State Senate proposed an amendment to Assembly Bill (‘AB’) 713 relating to de-identified data. In particular, the amendment would

June 5, 2020 -

The Evolution of Valid Consent for Cookies in Germany

On May 28, 2020, Germany’s Federal Court of Justice (‘BGH’) announced its decision on the Planet49 case, ruling that the use of pre-ticked checkboxes in Planet49’s online

June 3, 2020 -

Next Steps to Evolve Your CCPA Program

The California Consumer Privacy Act (CCPA) has gone into effect. Companies worked hard to meet a January 1, 2020

June 2, 2020 -

California AG Submits Final Version of the CCPA Regulations

On June 1, 2020, the California Attorney General submitted the final version of the California Consumer Privacy Act (CCPA)

June 2, 2020 -

CCPA Compliance for Small Businesses

The California Consumer Privacy Act (CCPA) establishes new data privacy rights for California consumers. Specifically, it requires companies conducting

June 1, 2020 -

Why Data Privacy Compliance Is a Continuous Discipline, Not Just a One-Time Scan

As the data privacy landscape continues to expand, businesses rely on data mapping, risk-based search, and robust, automated data

May 28, 2020 -

Deja Vu: Data Privacy Standards Evolution Draws Eerily Similar Comparison to PCI-DSS

As the data privacy space continues to awkwardly mature, we’re in the midst of a privacy sovereignty evolution. An

May 13, 2020 -

OneTrust Launches All New Courses for Publishers: IAB TCF 2.0 2020 Master Class Webinar Series

Today OneTrust opened registration for an IAB Europe Transparency and Consent Framework 2.0 (TCF 2.0) Master Class Webinar Series! The free webinar series is led by OneTrust privacy experts and designed to help publishers properly

May 12, 2020 -

CCPA 2.0 Signatures Submitted for November 2020 Ballot

On May 4, 2020 Alastair Mactaggart and the Californians for Consumer Privacy made a post on Twitter that caught

May 5, 2020 -

NIST Privacy Framework

In today’s data-driven world, marketers face a unique challenge when it comes to privacy. There are more innovative products

April 28, 2020 -

Going Beyond Privacy

CCPA compliance is top of mind right now for many marketers.  With the passing of the compliance deadline and

April 27, 2020 -

Irish Data Protection Authority Launches New Guidance on Cookies & Tracking Technologies

Earlier this month, the Irish Data Protection Commission (DPC) published a new guidance note on the use of cookies and tracking technologies,

April 22, 2020 -

CCPA Privacy Policy & Notice Requirements

A key part of the California Consumer Privacy Act (CCPA) that went into effect on January 1, 2020 is

April 21, 2020 -

When Will South Africa’s POPIA Enter Fully into Effect?

What is POPIA? The Protection of Personal Information Act (‘POPIA’)–South Africa’s omnibus data protection statute—was signed into law in

April 20, 2020 -

Registration Now Open for the Brazil LGPD Master Class Series

Registration is now open for OneTrust’s LGPD Master Class Series! Brazil’s Lei Geral de Proteção de Dados do Brasil

April 15, 2020 -

Integrating Privacy & Cyber Security

For any company with an online presence, an ironclad cybersecurity program is a cornerstone to providing assurance to clients,

April 9, 2020 -

Unifying Risk Management Initiatives

The digital age has ushered in increasing pressure for companies of all sizes and industries to pay closer attention

April 8, 2020 -

Announcing the New APAC Webinar Series

Registration is now open for OneTrust’s APAC Webinar Series! The global regulatory landscape keeps evolving, so continued compliance with

March 26, 2020 -

What Happened with the Washington Privacy Act?

For the second year in a row, the Washington Privacy Act (WPA) failed to pass this March. This act

March 24, 2020 -

Trade Associations Push California AG to Delay CCPA Enforcement Amid COVID-19 

With the unprecedented health and economic situation unfolding across the globe, 30 major California and national trade associations, including the Association of National

March 19, 2020 -

How to Automate CCPA Consumer Rights Requests

If you find you’re looking at your privacy program and sighing in frustration, it’s time for a change. Your

March 18, 2020 -

How to Comply with the CCPA’s Opt-Out of Sale Requirement

As of January 2020, California legislation has entered a list of amendments to the California Consumer Privacy Act (CCPA)

March 12, 2020 -

What Are the New CCPA Modified Regulations?

On March 11, 2020, the California Attorney General (AG) issued a second set of modified draft regulations for the

March 11, 2020 -

6 Step CCPA Compliance Checklist

What is the CCPA? Effective Jan. 1, 2020, the California Consumer Privacy Act (CCPA) is an advocacy bill passed

March 10, 2020 -

EU Council Presidency Releases Update to Draft ePrivacy Regulation

On March 6, 2020, The Presidency of the Council of the European Union (‘the Presidency’) released another revised text of the

February 21, 2020 -

Washington Privacy Act (WPA) Passes the Senate – On to the House

The Washington State Senate showed some love to privacy rights on Valentine’s Day by overwhelmingly passing Senate Bill 6281, Senator Carlyle’s Washington Privacy Act (WPA), by a vote of 46-1. The next stop for

February 19, 2020 -

What Does the Brexit Transition Period Mean for GDPR and Privacy Pros?

On January 31, 2020, the UK officially left the EU. A Brexit transition period will now span January 31,

February 12, 2020 -

The California Attorney General Releases Modified CCPA Proposed Regulations 

On February 10, 2020, California Attorney General (AG), Xavier Becerra, released a modified text of his proposed regulations for the

February 11, 2020 -

Announcing the New 2020 CCPA Master Class Webinar Series

Registration is now open for the 2020 OneTrust for CCPA Master Class Webinar Series. With CCPA enforcement starting on July 1, 2020,

February 4, 2020 -

OpenID Connect (OIDC): As Easy as 1-2-3

What is OpenID Connect?  OpenID Connect lets developers authenticate their users across websites and apps without having to own

January 30, 2020 -

Breaking Up is Hard to Do: the UK and the EU

On January 31, 2020, the United Kingdom (UK) is planning on exiting the European Union. (EU) This will impact the privacy world in many ways. In this blog post,

January 28, 2020 -

Data Privacy Day: 2020

Privacy in the year 2020 started off strong with the California Consumer Privacy Act (CCPA) coming into effect. Now,

January 21, 2020 -

Cybersecurity Maturity Model Certification (CMMC), Escalating Security

Escalating Security Across Vendor Contracting CMMC for government contractors, A Shift from a Static Plan to a Dynamic Measure

January 20, 2020 -

NIST Releases First Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management

On January 16, 2020 NIST released their first framework developed specifically for managing privacy risk, Version 1.0 of the NIST Privacy

January 1, 2020 -

The CCPA is Here

With the California Consumer Privacy Act (CCPA) in effect, we wanted to reflect on the CCPA’s journey. In this

December 31, 2019 -

The CCPA: Right to Opt-Out

The California Consumer Privacy Act (CCPA) is almost here and businesses everywhere are rushing to meet compliance. The CCPA

December 27, 2019 -

The CCPA Toll-Free Number Requirement

The California Consumer Privacy Act (CCPA) is taking effect on January 1st, 2020, and one requirement that still confuses many businesses is the Toll-Free

December 26, 2019 -

CCPA Do Not Sell Requirement

With the CCPA effective date just around the corner, the compliance deadline is coming in hot. Businesses with customers

December 24, 2019 -

CCPA Compliance: Your Most Frequent CCPA Questions Answered

The CCPA is only days away from taking effect, but don’t panic. OneTrust has all the resources you need

December 19, 2019 -

The CCPA vs. the GDPR Comparison

Both the California Consumer Privacy Act (CCPA) and the EU’s General Data Protection Regulation (GDPR) aim to protect individuals’ privacy rights, but there are some

December 11, 2019 -

CCPA Readiness: Third Wave Report 

With the California Consumer Privacy Act (CCPA) going into effect on January 1, 2020, businesses are scrambling to get

December 5, 2019 -

Getting Started: 5 Steps to Start Your CCPA Compliance Privacy Program

Effective January 1, 2020, the California Consumer Privacy Act (CCPA) introduces new data privacy rights for California residents –

November 25, 2019 -

OneTrust Targeted Data Discovery: Not Your Average Data Discovery Tool

Privacy is a global phenomenon. With the rise of global privacy laws like the CCPA and GDPR, businesses across the world are

November 13, 2019 -

In the Know: CCPA Personal Information

CCPA and “Personal Information”  Personal information. It’s a hot topic right now, and understandably so. CCPA Amendment 874 defines personal information

November 6, 2019 -

CCPA Applicability: Who will the CCPA Impact?

Businesses   As California’s new privacy law goes into effect on January 1, 2020, every company, organization, and person who

October 31, 2019 -

IAB and CCPA: Let’s Get Technical

What’s going on with IAB and the CCPA?  On October 22, 2019, the IAB and IAB Tech Lab released

October 24, 2019 -

CCPA Requirements for Businesses

With the CCPA amendments signed into law, privacy experts are discussing what this means for businesses and the industry as we

October 16, 2019 -

The Latest Global Privacy, Security and Marketing News: October 2019

This month OneTrust is bringing you the global privacy news you need to know. Get the lowdown on all the OneTrust webinars, articles,

October 14, 2019 -

California Governor Signs CCPA Amendments Into Law

CCPA amendments have been officially signed into law. On Friday, October 11, California Governor Gavin Newsom signed all 5 amendments passed by the California legislature into

October 11, 2019 -

Proposed Regulations Under the CCPA: What You Need to Know

What’s Going On? On October 10, 2019, the California Attorney General (AG), Xavier Becerra, issued proposed regulations under the

October 10, 2019 -

CCPA Proposed Regulations

On October 10, 2019, California Attorney General (AG) Xavier Bacerra posted the Text of the Proposed Regulations to implement

October 9, 2019 -

Comply with the CCPA’s “Toll Free Requirement” with OneTrust

The California legislature has finalized amendments to the California Consumer Privacy Act (CCPA) which are now waiting for Governor Newsome’s signature. One of the most

October 2, 2019 -

California Privacy Rights and Enforcement Act Ballot Initiative

Alastair Mactaggart made headlines in 2018 when he successfully submitted a ballot initiative to the California legislature that granted

October 2, 2019 -

OneTrust PreferenceChoice’s Cookie Auto-Blocking Technology

Website compliance and cookie consent notice implementation is no easy task. From beacons to pixels, AdTech, piggybacking, tag manager

September 26, 2019 -

Top FAQs: the Nevada Privacy Law

With the Nevada Privacy Law coming into effect soon, privacy professionals are curious about the specifics. While the law shares

September 24, 2019 -

OneTrust Brings the CCPA to IAPP PSR 2019

Welcome to fabulous Las Vegas and the U.S.’s premiere congregation of privacy and security professionals and IAPP Privacy.Secuity.Risk taking

September 22, 2019 -

Comply with the CCPA’s “Toll-Free Requirement” with OneTrust

The California legislature has finalized amendments to the California Consumer Privacy Act (CCPA), and we are now only waiting

September 17, 2019 -

The Nevada Privacy Law (SB-220) vs. The California Consumer Privacy Act (CCPA) 

For the last year, the California Consumer Privacy Act (CCPA) has dominated the attention of most privacy professionals and

September 12, 2019 -

CCPA Amendments Crunch Time

CCPA amendments are one step closer to becoming law. Friday, September 13 was the deadline for the California legislature

September 11, 2019 -

OneTrust: Keeping Up with Cookie Consent

As marketers, it is important to keep track of the constantly changing rules and regulations. Recently, guidance from the

August 28, 2019 -

The Dos and Don’ts of CCPA Consumer Right Requests

The California Consumer Privacy Act (CCPA) is the first privacy law of its kind to pass in the United

August 27, 2019 -

ISO 27701 New Privacy Standard: How OneTrust Got Certified & How You Can Too

Just a few days after the new privacy certification was launched, OneTrust announced that we received the world’s-first ISO 27701 certification for a Privacy

August 21, 2019 -

Last Week In Privacy- August 21, 2019

Welcome to Last Week in Privacy! Each week, OneTrust’s in-house privacy experts will give you the top international privacy

August 21, 2019 -

Less Than 1 Month Left to Finalize CCPA Amendments

Amendments to the California Consumer Privacy Act (CCPA) have been making their way through the California legislature throughout the

August 13, 2019 -

OneTrust Policy and Notice Management: Tackling CCPA Disclosure and GDPR Policy Challenges

The GDPR and CCPA have specific requirements about privacy policies and disclosures – for instance the CCPA requires you

August 12, 2019 -

OneTrust and DMA Partnering Up to Provide Marketers with GDPR and CCPA Tools

With new compliance challenges created by the GDPR and the CCPA, marketers face a new challenge: maintaining compliance while delivering

August 6, 2019 -

Last Week In Privacy- August 6, 2019

Welcome to Last Week in Privacy! Each week, OneTrust’s in-house privacy experts will give you the top international privacy

August 5, 2019 -

Join OneTrust’s Free CCPA Online Summit

Today OneTrust launched Build a CCPA Privacy Program with OneTrust, a free, half-day online summit to help companies prepare

August 2, 2019 -

Cookie Briefing: Updated CNIL Guidelines and What They Mean for You

On 18 July the CNIL, France’s Data Protection Authority, released updated cookie guidelines. These guidelines repeal the previous CNIL Cookie Guidelines and re-interpret the Article

July 31, 2019 -

How OneTrust Helps: CCPA “Do Not Sell” Requirements

The California Consumer Privacy Act (CCPA) introduces new rights for California residents—requiring companies that conduct business in the State

July 30, 2019 -

How OneTrust Helps with the CCPA

The California Consumer Privacy Act (CCPA) is rapidly approaching. With the law set to take effect in January of 2020, many organizations are looking for

July 24, 2019 -

Last Week in Privacy – July 24, 2019

Welcome to Last Week in Privacy! Each week, OneTrust’s in-house privacy experts will give you the top international privacy

July 23, 2019 -

Register for PrivacyConnect: 125+ CCPA and GDPR Workshops Added across 100+ Cities

We’re finishing up PrivacyConnect 2019 strong and today added registration 125+ free, local PrivacyConnect workshops in 100+ cities across the globe!  PrivacyConnect workshops and

July 22, 2019 -

What Teams Should Be Part of Your Internal CCPA Team

The California Consumer Privacy Act (CCPA) is the first privacy law of its kind to pass in the United States – transforming

July 16, 2019 -

Privacy News From Around the Globe – Week of July 15th

Welcome to Last Week in Privacy! Each week, OneTrust’s in-house privacy experts will give you the top international privacy

July 16, 2019 -

How OneTrust Helps: CCPA Consumer Rights Management

The California Consumer Privacy Act (CCPA) introduces new rights for California residents – requiring companies that conduct business in

July 11, 2019 -

OneTrust Raises $200 Million Series A | Valued at $1.3 Billion

Today is a monumental day for the OneTrust team and privacy industry at large. We are excited to announce

July 9, 2019 -

Master your CCPA Compliance Program with OneTrust’s CCPA Master Class Webinar Series

Today we announced the OneTrust for CCPA Master Class Webinar Series! These courses, led by OneTrust CCPA experts, are designed

July 5, 2019 -

Cookie Briefing: Recent ICO Guidance and What It Means for You

On July 3, 2019, the UK Information Commissioner’s Office (ICO) released its new Guidance on the Use of Cookies

July 1, 2019 -

Your Data Map’s Missing Piece: Why Third-Party Risk Management is Indispensable

In its simplest form, a data map tells you what data you have, how it’s used, where it goes,

May 30, 2019 -

OneTrust Welcomes 350+ Privacy and Security Professionals to Atlanta for PrivacyTech Americas

OneTrust welcomed 350+ privacy and security professionals to Atlanta for PrivacyTech Americas last week. It was a jam-packed two

May 7, 2019 -

How to Maintain an Up-to-Date Data Map with OneTrust Vendor Risk Management

In aiding more than 2,500 companies mature their privacy and security compliance programs, we’ve heard one question more than any other: “How do I

May 1, 2019 -

Ready to Become an Expert? Everything you Need to know about OneTrust’s PrivacyTech Expert Certification

The clock is ticking and PrivacyTech 2019 is almost here! With just a few short weeks until PrivacyTech in

April 30, 2019 -

Ready or not, here it comes: How prepared are organizations for the California Consumer Privacy Act?

Today at International Association of Privacy Professionals’ (IAPP) Global Privacy Summit, OneTrust and the IAPP announced the results from joint research analyzing California Consumer Privacy Act (CCPA) preparedness in

April 25, 2019 -

CCPA: New Amendment Bills One Step Closer to Becoming Law

This week the California State Assembly’s Privacy and Consumer Protection Committee voted to advance several bills amending the CCPA –

April 23, 2019 -

How to Get Third-Party Risk Assessments Completed Faster

Your questionnaire is ready. You’ve defined your risk appetite. You know what controls need to be in place. Finally, you’re

March 26, 2019 -

Last Week in Privacy- March 26, 2019

Welcome to Last Week in Privacy! Each week, OneTrust’s in-house privacy experts will give you the top international privacy

March 18, 2019 -

Privacy, the New Global Trade War: Part 3

What this new global trade war means for businesses and people in the future In Privacy, the Global Trade

March 14, 2019 -

5 Simple Steps to CCPA Readiness

The California Consumer Privacy Act (CCPA) isn’t set to take effect until January 1, 2020, and with an expected

March 7, 2019 -

The Importance of the CCPA Look Back Requirement and What it Means for your Organization

The California Consumer Privacy Act (CCPA) will take effect on January 1, 2020. At first glance, this may appear

March 5, 2019 -

Last Week in Privacy- March 5, 2019

Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts will give you the top international privacy

March 5, 2019 -

Privacy, the New Global Trade War: Part 2

Why Privacy Laws’ impact goes well beyond Privacy In Privacy, the Global Trade War: Part 1, we discussed how, very

March 4, 2019 -

The Next Evolution of Third-Party Risk Management is here with OneTrust’s Vendorpedia

Today at RSA Conference 2019, OneTrust announced Vendorpedia™,the industry’s only security and privacy third-party risk exchange. Available today for

February 25, 2019 -

Privacy, the New Global Trade War: Part 1

With the GDPR firmly embedded in our company compliance programs, we might not have realized that it has not

February 20, 2019 -

Last Week in Privacy- February 20, 2019

Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts will give you the top international privacy

February 19, 2019 -

Drive Innovation with Privacy Technology at PrivacyTech 2019 Americas and Europe

Registration is now open for PrivacyTech, OneTrust’s annual global user conference for driving innovation with privacy technology! PrivacyTech Americas in

February 13, 2019 -

Last Week In Privacy- February 13, 2019

Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts will give you the top international privacy

February 13, 2019 -

CA Attorney General Holds Public Forums on the CCPA: What You Need to Know

The California Consumer Privacy Act (CCPA) is fast approaching. With an effective date of January 1, 2020 and a

February 11, 2019 -

Incident & Breach Management – How Can Software Help?

Incident and Breach Response is an important privacy and security tool for compliance in relation to the protection of

February 5, 2019 -

Get Ready for the CCPA with OneTrust

The California Consumer Privacy Act (CCPA) introduces new rights for California residents, requiring companies that conduct business in the State

January 30, 2019 -

You Asked, We Answered— The CCPA & the GDPR Webinar Q&A Follow Up

In our webinar on January 17, 2019 with Perkins Coie LLP’s partner and Co-Chair of the Ad Tech Privacy

January 28, 2019 -

Last Week in Privacy: Special Data Privacy Day Edition

Welcome to this special “Data Privacy Day” edition of Last Week in Privacy. Here are some of the top

January 17, 2019 -

Enable your Privacy and Security Teams to Work Together with OneTrust for ServiceNow

OneTrust is excited to announce that we have partnered with ServiceNow, a cloud-based platform with solutions that deliver digital

January 14, 2019 -

PrivacyConnect CCPA and GDPR Workshops Coming to 80+ Global Cities in 2019

Registration is now open for OneTrust’s PrivacyConnect 2019! With revamped content focused on the privacy and security challenges managing

January 7, 2019 -

OneTrust releases new mobile app- CCPA by OneTrust

You can now have the most useful California Consumer Privacy Act (CCPA) resources at your fingertips with OneTrust’s new

December 31, 2018 -

Innovators in Privacy Tech- Vanquis Bank’s Dave Oldham on Assessing Vendors

Welcome to our video series, innovators in Privacy Tech! At our global user conference in London, PrivacyTECH, we interviewed the best

December 27, 2018 -

Innovators in Privacy Tech- Dyson’s Manish Kumar on Prioritizing Trust and the GDPR

Welcome to our video series, innovators in Privacy Tech! At our global user conference in London, PrivacyTECH, we interviewed the best

December 19, 2018 -

Innovators in Privacy Tech- Dyson’s Manish Kumar on Global Considerations with the GDPR

Welcome to our video series, innovators in Privacy Tech! At our global user conference in London, PrivacyTECH, we interviewed the best

December 17, 2018 -

Innovators in Privacy Tech- Lawrie Siteman on Best Practices for Life after GDPR

Welcome to our video series, innovators in Privacy Tech! At our global user conference in London, PrivacyTECH, we interviewed the best

December 13, 2018 -

Innovators in Privacy Tech- Lawrie Siteman on Using GDPR to your advantage

Welcome to our video series, innovators in Privacy Tech! At our global user conference in London, PrivacyTECH, we interviewed the best

December 11, 2018 -

Last Week In Privacy- December 11, 2018

Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts will give you the top international privacy

December 10, 2018 -

Innovators in Privacy Tech- Dentsu Aegis Network’s Russell Davies on Keeping GDPR Compliance

Welcome to our video series, innovators in Privacy Tech! At our global user conference in London, PrivacyTECH, we interviewed the best

December 5, 2018 -

Innovators in Privacy Tech- Live Nation’s Alex Bryant on the GDPR

Welcome to our video series, Innovators in Privacy Tech! At our global user conference in London, PrivacyTECH, we interviewed the best

December 4, 2018 -

Last Week In Privacy – December 4, 2018

Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts will give you the top international privacy

November 27, 2018 -

Manage Data Breach Response Efforts Across the Globe with OneTrust’s Incident Management Solution

As personal data-related incidents become more common and breach notification requirements vary across regions, privacy and security teams need a

November 27, 2018 -

OneTrust “Leads the Pack for Vision and Execution” in GDPR and Privacy Management Software Evaluation

Today is an exciting day at OneTrust – leading analyst research firm Forrester named OneTrust a leader in The Forrester New Wave™: GDPR and Privacy Management

November 21, 2018 -

Innovators in Privacy Tech- Protiviti’s Tom Lemon on Achieving Sustainability

Welcome to our video series, innovators in Privacy Tech! At our global user conference in London, PrivacyTECH, we interviewed the best

November 19, 2018 -

Innovators in Privacy Tech- PA Consulting’s Adam Stringer on the Future of Privacy

Welcome to our video series, innovators in Privacy Tech! At our global user conference in London, PrivacyTECH, we interviewed the best

November 14, 2018 -

Innovators in Privacy Tech: UnitedLex’s Jason Straight on the CCPA and what’s next?

We are excited to launch a brand-new video series, Innovators in Privacy Tech! At our global user conference in London, PrivacyTECH,

November 8, 2018 -

Tech Wire Asia Features OneTrust as Leading Privacy Management Software

With the privacy landscape constantly changing, and new laws and regulations proposed or discussed on a weekly basis, it is vital

November 7, 2018 -

ICDPPC Report – Apple, Google, Facebook and Microsoft Support A Comprehensive US Federal Privacy Law

At the 40th International Conference of Data Protection and Privacy Commissioner (the “ICDPPC”) last month, the annual convergence of

November 6, 2018 -

Last Week in Privacy- November 6, 2018

Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts will give you the top international privacy

November 1, 2018 -

Canada’s New Data Breach Reporting Law Takes Effect Today

Companies subject to the Personal Information Protection and Electronic Documents Act (the “PIPEDA“) will now need to satisfy the reporting and

October 30, 2018 -

Last Week in Privacy – October 30, 2018

Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts will give you the top international privacy

October 8, 2018 -

Updates from the European Data Protection Board (EDPB)

European Data Protection Board (the “EDPB”) held its third plenary session on September 25 and 26, 2018. Several topics

October 2, 2018 -

What is the Pakistan Data Protection Bill 2018?

A new Personal Data Protection Bill 2018 Draft (the “Bill”) has been proposed by the Ministry of Information Technology

October 1, 2018 -

Canada’s New Breach Reporting Guidance: Open for Comments

The Office of the Privacy Commissioner of Canada (the “OPC”) is seeking public comment on its new guidance (the “Guidance”) intended

September 18, 2018 -

Last Week In Privacy- September 18, 2018

Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts will give you the top international privacy

September 4, 2018 -

New Collaboration Features Added to OneTrust Assessment Automation Module

OneTrust released new collaboration features integrated into the Assessment Automation Module for General Data Protection Regulation (GDPR), California Consumer

August 28, 2018 -

Last Week In Privacy- August 28, 2018

Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts will give you the top international privacy

August 22, 2018 -

Last Week In Privacy- August 22, 2018

Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts will give you the top international privacy

August 20, 2018 -

Irish DPC Issued Draft List of Types of Data Processing Operations Which Require A DPIA

Irish DPC Issued Draft List of Types of Data Processing Operations Which Require A DPIA The Irish Data Protection

August 19, 2018 -

OneTrust expands presence into Australia and New Zealand with new Melbourne Office and Integrated ANZ Privacy Laws

OneTrust is excited to announce expanded support and resources for the Australia and New Zealand markets (ANZ) with a

August 14, 2018 -

Last Week In Privacy- August 14, 2018

Last Week In Privacy- August 14, 2018 Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts

August 6, 2018 -

Ovum Report Identifies OneTrust as a Leader in the Global Privacy Management Market

Ovum Report Identifies OneTrust as a Leader in the Global Privacy Management Market As evidenced by the surprise passing

August 1, 2018 -

Privacy Rights Under the California Consumer Privacy Act vs. the EU’s General Data Protection Regulation White Paper

Privacy Rights Under the California Consumer Privacy Act vs. the EU’s General Data Protection Regulation Whitepaper With the recent

July 30, 2018 -

OneTrust Team Thrives at IAPP Asia and RSA Conference Asia Pacific & Japan

Last week, security professionals from all over the world made their way to Singapore for the IAPP Asia Privacy

July 27, 2018 -

What is the New Indian Personal Data Protection Bill?

What is the New Indian Personal Data Protection Bill? On July 27, 2018, the Indian government released the draft

July 20, 2018 -

What is the Brazil General Data Protection Law (LGPD)?

What is the Brazil General Data Protection Law (LGPD)? On August 14, 2018, after eight years of debates and

July 19, 2018 -

OneTrust Integrates Mobile App Consent Solution into the OneTrust Platform

OneTrust Integrates Mobile App Consent Solution into the OneTrust Platform Consumers are turning to their mobile devices to access

July 12, 2018 -

Get Your Free California Consumer Privacy Act Initial Planning Assessment

Last month, California lawmakers signed the California Consumer Privacy Act of 2018 (CCPA), a new privacy law that will

June 29, 2018 -

What is the California Consumer Privacy Act?

What is the California Consumer Privacy Act? Last night, California Governor Jerry Brown signed into law the California Consumer

June 28, 2018 -

OneTrust Updates Cookie Consent Solution with Detailed Records of User Consent

OneTrust Updates Cookie Consent Solution with Detailed Records of User Consent Since the implementation of GDPR a little over

June 13, 2018 -

OneTrust DSAR Portal Has Automated 10,000+ Requests Since May 25 (WEBINAR)

Several articles of the EU’s General Data Protection Regulation (GDPR) focus on the rights of data subjects, including data

April 23, 2018 -

WP29 Issues Working Document Setting Forth a Cooperation Procedure for Approval of Binding Corporate Rules (BCR) Under the GDPR

WP29 Issues Working Document Setting Forth a Cooperation Procedure for Approval of Binding Corporate Rules (BCR) Under the GDPR

April 20, 2018 -

The Article 29 Working Party Issues Revised Guidelines on Transparency

The Article 29 Working Party Issues Revised Guidelines on Transparency Transparency is one of the pillar principles of privacy

April 19, 2018 -

The WP29 Revises its Guidelines on Consent Under GDPR Ahead of the Upcoming Enforcement Date of 25 May 2018

The WP29 Revises its Guidelines on Consent Under GDPR Ahead of the Upcoming Enforcement Date of 25 May 2018

March 7, 2018 -

WP29 Publishes Revised Guidelines on Personal Data Breach Notification Under GDPR

WP29 Publishes Revised Guidelines on Personal Data Breach Notification Under GDPR In October 2017, the Article 29 Working Party

January 24, 2018 -

Cross-Border Data Transfer: Post-Brexit

Cross-Border Data Transfer: Post-Brexit On 9 January 2018, the European Commission issued a “notice to stakeholders” on the United

December 20, 2017 -

The WP29 Draft Guidelines on Transparency in Review

The WP29 Draft Guidelines on Transparency in Review The WP29 released last week its new draft guidelines on transparency

December 15, 2017 -

WP29 Issues New Guidelines on Consent

WP29 Issues New Guidelines on Consent On 12 December 2017, the Article 29 Working Party finally published its long-awaited

December 12, 2017 -

The WP29 Raises Concerns About the Privacy Shield

The WP29 Raises Concerns About the Privacy Shield The Article 29 Working Party (WP29), which participated in the first

November 9, 2017 -

WP29 Guidelines Review: How DPAs Will Apply Administrative Fines Under the GDPR

WP29 Guidelines Review: How DPAs Will Apply Administrative Fines Under the GDPR The GDPR grants extensive enforcement powers to

October 30, 2017 -

Privacy Shield Passes Its First Annual Review, But Could Be Improved

Privacy Shield Passes Its First Annual Review, But Could Be Improved On 12 July 2016, the EU Commission adopted

October 18, 2017 -

WP29 Issues Revised Guidelines on Data Protection Impact Assessment (DPIA)

WP29 Issues Revised Guidelines on Data Protection Impact Assessment (DPIA)   In April 2017, the Article 29 Working Party

October 18, 2017 -

WP29 Publishes New Guidelines on Personal Data Breach Notification Under the GDPR

WP29 Publishes New Guidelines on Personal Data Breach Notification Under the GDPR The GDPR expands the range of obligations

October 18, 2017 -

WP29 Publishes New Guidelines on Profiling and Automated Decision-Making

WP29 Publishes New Guidelines on Profiling and Automated Decision-Making With recent technological developments, especially AI and machine learning technology,

October 13, 2017 -

The CNIL Issues New Guidance For Processors

The CNIL Issues New Guidance For Processors In a significant change from the Directive, the GDPR imposes direct legal

October 9, 2017 -

Irish High Court: Validity of the Standard Contractual Clauses to be Decided by the ECJ

Irish High Court: Validity of the Standard Contractual Clauses to be Decided by the ECJ On 3 October 2017,

October 5, 2017 -

OneTrust GDPR Deep Dive Series Chapter 10: Delegated Acts and Implementing Acts & Chapter 11: Final Provisions

OneTrust GDPR Deep Dive Series Chapter 10: Delegated Acts and Implementing Acts & Chapter 11: Final Provisions Chapter 10

October 4, 2017 -

ICO is Consulting on its GDPR Guidance Regarding Contract Between Controllers and Processors

ICO is Consulting on its GDPR Guidance Regarding Contract Between Controllers and Processors On 13 September 2017, the UK

September 28, 2017 -

OneTrust Legal Team Authors GDPR Privacy Advisor Post for IAPP

OneTrust Legal Team Authors GDPR Privacy Advisor Post for IAPP OneTrust’s Chief Privacy Officer, Andrew Clearwater, CIPP/US and Privacy

September 26, 2017 -

Poland Publishes New Draft Data Protection Acts “Implementing” the GDPR

Poland Publishes New Draft Data Protection Acts “Implementing” the GDPR The Polish government recently published a package of draft

September 22, 2017 -

UK government publishes new UK Data Protection Bill

UK government publishes new UK Data Protection Bill Last week, the UK government published its new Data Protection Bill,

September 18, 2017 -

The Irish Data Protection Commissioner Issues New Guidance on Appropriate Qualifications for DPOs

The Irish Data Protection Commissioner Issues New Guidance on Appropriate Qualifications for DPOs The Irish Data Protection Commissioner recently

September 14, 2017 -

The Council of the European Union Issues Amendments to the Commission’s E-Privacy Regulation Proposal

The Council of the European Union Issues Amendments to the Commission’s E-Privacy Regulation Proposal The European Union has been

September 6, 2017 -

Belgian DPA Publishes Template for Article 30 Records

Belgian DPA Publishes Template for Article 30 Records The Belgian Data Protection Authority (DPA) has published a template for

September 1, 2017 -

Supreme Court of India Declares Privacy a Fundamental Right

Supreme Court of India Declares Privacy a Fundamental Right Last week, India’s Supreme Court unanimously ruled that individual privacy

August 10, 2017 -

CNIL Publishes Guidance on Incident Management and Notification

CNIL Publishes Guidance on Incident Management and Notification The French data protection authority (“the CNIL”) has published guidance on

August 9, 2017 -

UK Government Publishes Statement of Intent for New Data Protection Bill

On Monday, the UK Department for Digital, Culture Media and Sport (DCMS) published a statement of intent for a

August 4, 2017 -

The GDPR’s Impact on Marketing and Advertising

The GDPR’s Impact on Marketing and Advertising   When companies share customers’ personal information with third-parties, they’re helping brands

July 27, 2017 -

OneTrust GDPR Deep Dive Series Chapter 5: Transfers of Personal Data to Third Countries or International Organisations

OneTrust GDPR Deep Dive Series Chapter 5: Transfers of Personal Data to Third Countries or International Organisations Chapter 5

July 25, 2017 -

Over 800 Amendments to e-Privacy Regulation Submitted by LIBE Committee

Last week, the LIBE Committee proposed over 800 amendments to the much-anticipated e-Privacy Regulation. The amendments are included in

July 24, 2017 -

Norway Publishes Consultation Notes on Draft Personal Data Act

Norway Publishes Consultation Notes on Draft Personal Data Act Norway has published consultation notes on a new draft Personal

July 20, 2017 -

EEA Adopts the EU-U.S. Privacy Shield Framework

EEA Adopts the EU-U.S. Privacy Shield Framework On July 7, the European Economic Area (EEA) – which consists of

July 19, 2017 -

After Reference by Article 29 Working Party, ISO publishes ISO/IEC 29134:2017

After Reference by Article 29 Working Party, ISO publishes ISO/IEC 29134:2017 The International Organization for Standardization (ISO) recently published

July 10, 2017 -

Belgian DPA Guidance on GDPR Article 30 Records of Processing Requirements

Belgian DPA Guidance on GDPR Article 30 Records of Processing Requirements The Belgian Data Protection Authority (DPA) published guidance on carrying out

July 6, 2017 -

WP29 Publishes Opinion on Data Processing at Work

The Article 29 Working Party (WP29) has issued Opinion 2/2017 on data processing at work (the “Opinion”). The Opinion

June 29, 2017 -

OneTrust GDPR Deep Dive Series Chapter 3: Rights of the Data Subject

OneTrust GDPR Deep Dive Series Chapter 3: Rights of the Data Subject One of the most important goals of the GDPR is to protect

June 28, 2017 -

Recap of IAPP | OneTrust Webinar – GDPR Expert Panel: Lessons Learned on How to Tackle Article 30

Recap of IAPP | OneTrust Webinar – GDPR Expert Panel: Lessons Learned on How to Tackle Article 30 Click

June 23, 2017 -

UK Information Commissioner’s Office Publishes Revised Subject Access Code of Practice

UK Information Commissioner’s Office Publishes Revised Subject Access Code of Practice The UK Information Commissioner’s Office (ICO) has published

June 16, 2017 -

ePrivacy Regulation Draft Report Released By LIBE Committee

ePrivacy Regulation Draft Report Released By LIBE Committee On June 9, the European Parliament’s LIBE Committee (Civil Liberties, Justice

June 15, 2017 -

OneTrust GDPR Deep Dive Series: Chapter 2

OneTrust GDPR Deep Dive Series Chapter 2: Principles Chapter 2 outlines basic principles and provides information to help companies prepare

June 13, 2017 -

Germany Approves New Federal Data Protection Act

Germany Approves New Federal Data Protection Act Germany’s Federal Assembly has approved the new Federal Data Protection Act with

June 9, 2017 -

Legitimate Interests: Italian DPA Issues Decision and CIPL Provides Recommendations

Legitimate Interests: Italian DPA Issues Decision and CIPL Provides Recommendations As the countdown to GDPR continues, it is becoming

June 1, 2017 -

Introducing the OneTrust GDPR Deep Dive Series

Introducing the OneTrust GDPR Deep Dive Series The one-year countdown to GDPR started last week. To mark the occasion, OneTrust

May 23, 2017 -

Sweden’s Data Protection Commission Publishes Report on Adapting to the GDPR

Sweden’s Data Protection Commission Publishes Report on Adapting to the GDPR In February 2016, the Swedish Government tasked a

May 22, 2017 -

Austrian Parliament Publishes Draft Data Protection Adjustment Act

Austrian Parliament Publishes Draft Data Protection Adjustment Act The Austrian legislature has commenced a six-week consultation process for a

May 16, 2017 -

Article 29 Working Party Opinion on the Proposed EU ePrivacy Regulation

Article 29 Working Party Opinion on the Proposed EU ePrivacy Regulation The Article 29 Working Party (WP29) has released

May 12, 2017 -

German DPA Releases English Translation of the Standard Data Protection Model

German DPA Releases English Translation of the Standard Data Protection Model A German data protection authority (DPA) has published

May 9, 2017 -

German Parliament Passes New Federal Data Protection Act in Preparation for GDPR

German Parliament Passes New Federal Data Protection Act in Preparation for GDPR The German Parliament has passed a new

May 5, 2017 -

Italian DPA Issues Guide for the Application of the GDPR

Italian DPA Issues Guide for the Application of the GDPR On April 28, 2017, the Garante (Italian data protection

April 27, 2017 -

Dutch DPA Offers 10-Step Plan for GDPR Readiness

Dutch DPA Offers 10-Step Plan for GDPR Readiness The Dutch DPA recently published a 10-step plan to help organizations

April 18, 2017 -

IAPP and OneTrust Announce the Availability of a Free Data Mapping Automation Tool for IAPP Members

IAPP and OneTrust Announce the Availability of a Free Data Mapping Automation Tool for IAPP Members    OneTrust, along with the

April 14, 2017 -

Article 29 Working Party (WP29) Guidelines on Data Protection Impact Assessments

Article 29 Working Party (WP29) Guidelines on Data Protection Impact Assessments The Article 29 Working Party adopted on 4

March 17, 2017 -

CNIL Six-Step Guide to GDPR Preparation

CNIL Six-Step Guide to GDPR Preparation The Commission Nationale de l’Informatique et des Libertés (CNIL), the French data protection

March 14, 2017 -

OneTrust Announces the Launch of a Free Cookie Compliance Tool for IAPP Members

OneTrust Announces the Launch of a Free Cookie Compliance Tool for IAPP Members  Together with IAPP, the world’s largest association of

March 13, 2017 -

GDPR Consent Guidance Published by the UK ICO

GDPR Consent Guidance Published by the UK ICO The United Kingdom Information Commissioner’s Office (UK ICO) released guidance on

February 22, 2017 -

Nobody Likes Cookie Pop-Ups: Browser-Based Consent and the ePrivacy Regulation

Nobody Likes Cookie Pop-Ups: Browser-Based Consent and the ePrivacy Regulation The ePrivacy Regulation proposals have been made public for a

February 14, 2017 -

Spanish Data Protection Authority Publishes GDPR Guides for Spanish SMEs

Spanish Data Protection Authority Publishes GDPR Guides for Spanish SMEs The Spanish Data Protection Authority – Agencia Española de

January 31, 2017 -

How GDPR Compliance Can Save You Money

How GDPR Compliance Can Save You Money As January comes to a close, reality begins to sink in that

January 26, 2017 -

The Future of EU Cookie Compliance Webinar Recording

The Future of EU Cookie Compliance Webinar Recording Presented by OneTrust Speakers Jonathan Kaley-Isley, Global Head of Privacy &

January 18, 2017 -

Register for OneTrust The Future of EU Cookie Compliance Webinar

Register for OneTrust The Future of EU Cookie Compliance Webinar Reminder to register for our webinar tomorrow to learn

January 17, 2017 -

NIST Turns FIPPS into Concrete Privacy Objectives and Risk Model for Federal Agencies

NIST Turns FIPPS into Concrete Privacy Objectives and Risk Model for Federal Agencies Geared towards information systems engineers, the

January 12, 2017 -

Belgian DPA Seeks Public Comments on DPIA Draft Recommendation

Belgian DPA Seeks Public Comments on DPIA Draft Recommendation As the Belgian DPA (Commission de la protection de la

January 10, 2017 -

Register to Attend New EU ePrivacy Regulation Webinar

Register to Attend New EU ePrivacy Regulation Webinar With the release of the new ePrivacy Regulation, we invite you to

December 29, 2016 -

The Future of EU Cookie Compliance White Paper

The Future of EU Cookie Compliance White Paper Two weeks ago, we published a blog post that highlighted some of the

December 16, 2016 -

WP29 Releases GDPR Implementation Guidelines and FAQs

WP29 Releases GDPR Implementation Guidelines and FAQs Coming at the heels of the EU ePrivacy Regulation leak, the Article

December 14, 2016 -

Draft of the EU ePrivacy Regulation Leaked

Draft of the EU ePrivacy Regulation Leaked A draft of the proposed legislation to replace the outdated EU ePrivacy

November 30, 2016 -

GDPR Compliance Means Cookie Notices Must Change

GDPR Compliance Means Cookie Notices Must Change You’re probably one of those people who ticked the cookie law box ages

November 22, 2016 -

Cellphone Privacy Risks in America

Cellphone Privacy Risks in America “Privacy is central to every major issue of our time, from immigration and reproductive

November 15, 2016 -

EU Businesses Aren’t Just Unprepared for GDPR… They’re Underpreparing

EU Businesses Aren’t Just Unprepared for GDPR… They’re Underpreparing Computing UK conducted a study in February 2016 that revealed

November 1, 2016 -

Brexit and The Cookie Law

Brexit and The Cookie Law As the world now knows, the UK has voted to leave the EU, so

October 27, 2016 -

Can Data Science Transform UK Governance Without Violating Privacy Rights?

Can Data Science Transform UK Governance Without Violating Privacy Rights? As Parliament begins hearings for the proposed Digital Economy

October 18, 2016 -

How Sharenting Compromises Children’s Privacy Rights

How Sharenting Compromises Children’s Privacy Rights With so much of our kids’ lives being digitally documented, now is an

October 6, 2016 -

Voting Online Would Mean Giving Up Your Legal Right to Privacy

Voting Online Would Mean Giving Up Your Legal Right to Privacy The right to an anonymous vote is a

October 3, 2016 -

Can Payments Companies Monetize Data and Still Comply with GDPR?

Can Payments Companies Monetize Data and Still Comply with GDPR? A growing trend among payment service providers is identifying

September 30, 2016 -

Snap Inc. Displays Commitment to Privacy By Design With New Wearable

Snap Inc. Displays Commitment to Privacy By Design With New Wearable Last week, Snap Inc. (the new business parent

September 29, 2016 -

How GDPR Applies to Charities and NPOs

How GDPR Applies to Charities and NPOs Between fundraising, events, and charitable giving, non-profit organizations (NPOs) collect a ton of

September 27, 2016 -

GDPR Will Require Accountability Through Privacy and Security by Design

GDPR Will Require Accountability Through Privacy and Security by Design PRIPARE defines Privacy by Design a few different ways:

September 26, 2016 -

Concept of a Privacy Threshold Assessment

Concept of a Privacy Threshold Assessment PTA Overview Privacy Impact Assessments/Analyses (PTAs) are an important aspect of privacy compliance

September 9, 2016 -

Challenging Aspects of Privacy Shield

Challenging Aspects of Privacy Shield Now more than a month into Privacy Shield, the two most challenging aspects of

September 8, 2016 -

5 Things You Should Know About GDPR – Video

5 Things You Should Know About GDPR – Video In a new video series from Bloomberg BNA, Managing Editor

September 5, 2016 -

Privacy Shield Overview & Tentative Take-Up

Privacy Shield Overview & Tentative Take-Up   A little over a month into Privacy Shield, and the data transfer

September 1, 2016 -

Agents Don’t Fully Understand Cyber Insurance

Agents Don’t Fully Understand Cyber Insurance Eduard Goodman, Chief Privacy Officer of identity theft protection firm, IDT911, recently discussed

August 15, 2016 -

GDPR and Operational Reform

GDPR and Operational Reform Data Protection was once the siloed concern of a company’s privacy team, but GDPR’s imminence

August 10, 2016 -

How Brexit Will Impact UK GDPR Compliance

How Brexit Will Impact UK GDPR Compliance On June 23, U.K. citizens approved Article 50, a Brexit from the

August 10, 2016 -

One Week Into Privacy Shield

  One week into the new Privacy Shield program, and companies have slowly begun to assimilate –– submitting self-certification as

Onetrust All Rights Reserved