Welcome to our video series, innovators in Privacy Tech! At our global user conference in London, PrivacyTECH, we interviewed the best and the brightest minds in the privacy industry for their insights on everything from the California Consumer Privacy Act (CCPA), the future of privacy, how to achieve sustainability in your privacy program and more.

Today we have Manish Kumar, Group Data Protection Officer at Dyson. Dyson is a British technology company established in 1991. It designs and manufactures household appliances such as vacuum cleaners, hand dryers, bladeless fans, heaters and hair dryers.

Global Considerations with the GDPR

Kumar notes that if you look at personal data, what it means under the GDPR in Europe is completely different to what personal data is under the recent CCPA in California ,and it’s also completely different from how data is handled in China or Russia. There are local derogations which are different and may or may not come into play. For example, GDPR creates an even playing field in Europe, but when you look at the U.S., there are all local laws, different breach notifications with different requirements thresholds, when it is reportable, how it is reportable, reporting format etc. On the other end, there is China, where the local derogations require you to have a data copy in China, and the new upcoming DPA for India where they expect you to process all the information locally. It’s a big challenge, even for big organizations where you want to get economies of scale, make sure that one team or one group of people can handle all the jurisdictions. These local changes and derogations makes it almost impossible.

Stay tuned for our the next Innovators in Privacy Tech post and visit our LinkedIn, Twitter and Facebook.  For more information, request a demo today and learn why OneTrust was named a leader in the Forrester New Wave™: GDPR and Privacy Management Software, Q4 2018