Blog

PIPEDA Fair Information Principles: Identifying Purposes
PIPEDA
Skylar Young

PIPEDA Fair Information Principles: Identifying Purposes

The Personal Information Protection and Electronic Documents Act (PIPEDA) is a privacy law that protects the personal information of Canadians. PIPEDA achieves this goal by stipulating certain requirements organizations subject to the law must follow. PIPEDA also imposes heavy penalties on those that fail to comply with its requirements. If

Read More »
GDPR rules for responding to data subject requests
GDPR
Alice Porch

GDPR rules for responding to data subject requests

The General Data Protection Regulation (“GDPR”) provides rights to residents in the European Union (“EU”) that allows them to control their personal data. To exercise their rights, the GDPR allows EU residents to send a request to the data controller. In this guide, we will answer the following: What is

Read More »
CCPA consumer rights
CCPA
Tyler Pewitt

CCPA consumer rights

The CCPA: California Consumer Privacy Act is one of the most comprehensive privacy laws in the United States. Largely inspired by the European Union’s General Data Protection Regulation (“GDPR”), the CCPA provides consumers with a broad array of rights pertaining to their personally identifiable information (“PII”) that is collected by

Read More »
A guide to GDPR Privacy Policy disclosure requirements
GDPR
Alice Porch

A guide to GDPR Privacy Policy disclosure requirements

The General Data Protection Regulation (“GDPR”) gives residents in the European Union (“EU”) control over their personal data. Under the GDPR, a controller must make certain disclosures to EU residents about its data processing activities. In this guide, we will explain: What disclosures are required under the GDPR: General Data

Read More »
GDPR: how to create a data protection impact assessment
GDPR
Alice Porch

GDPR: How to create a data protection impact assessment

The General Data Protection Regulation (“GDPR”) directs how an organization should handle the personal data of residents in the European Union (“EU”). Under the GDPR, an organization must conduct a Data Protection Impact Assessment (“DPIA”) if it processes high-risk data. In this guide, we will explain: What is a Data

Read More »
CCPA penalties
CCPA
Tyler Pewitt

CCPA penalties

The CCPA: California Consumer Privacy Act, in addition to providing consumers with a variety of rights pertaining to their personally identifiable information (“PII”), also provides consumers with the ability to file lawsuits directly against businesses under certain circumstances. Additionally, the California Attorney General may bring enforcement actions against noncompliant businesses.

Read More »
PIPEDA fair information principles
PIPEDA
Skylar Young

PIPEDA fair information principles: individual access

The Personal Information Protection and Electronic Documents Act (PIPEDA) is a privacy law that was enacted to protect the privacy rights of residents of Canada. The right to access one’s personal information is the hallmark of national and international privacy laws. In this blog post, we will explore the PIPEDA

Read More »
Australia privacy act consumer requests
Australia Privacy Act 1988
Skylar Young

Australia Privacy Act of 1988: how to respond to consumer requests

The Australia Privacy Act 1988 covers the processing and or use of personal information. An APP entity is a broad umbrella term referring to an organization that can include an individual, a body corporate, a partnership, any other unincorporated association, or a trust. An APP entity also refers to governmental

Read More »
The Nevada privacy law definition of sale
Nevada privacy law
Alice Porch

The Nevada privacy law definition of sale

In 2017, Nevada passed the Nevada Privacy of Information Collected on the Internet from Consumers Act (“Nevada Privacy Law”). The law requires online operators to post a Privacy Policy. Two years later, lawmakers amended the law to allow consumers to opt-out of the sale of their information. The Nevada Privacy

Read More »
Does Australia Privacy Act of 1988 apply to small businesses?
Australia Privacy Act 1988
Skylar Young

Does the Australia Privacy Act of 1988 apply to small businesses?

The Australia Privacy Act 1988 is unique in that it only applies to Australian organizations with an annual turnover of more than AUD $3,000,000. However, this article will explain the various exceptions that require certain small businesses to comply with the Australia Privacy Act as well as the opt-in provision

Read More »
Who does Nevada's Privacy Law Apply To?
Nevada privacy law
Alice Porch

Who does Nevada’s privacy law apply to?

Nevada enacted the Nevada Privacy of Information Collected on the Internet from Consumers Act (“Nevada Privacy Law”) in 2017. The law requires an online operator to post a privacy policy to inform consumers of how their data is collected, used, and shared. In 2019, Nevada added a requirement for operators

Read More »
CCPA enforcement date
CCPA
Tyler Pewitt

CCPA enforcement date

The CCPA: California Consumer Privacy Act, first enacted in 2018, became effective on January 1st, 2020. The law provides a variety of privacy rights to consumers, including the right to request the deletion of collected personally identifiable information (“PII”), the right to opt-out of the “sale” of PII, and the

Read More »