Companies should take California’s new data-privacy law seriously

HISTORY DOES not repeat but sometimes it rhymes. So, it seems, do efforts to protect netizens’ privacy. The European Union led the world with its General Data Protection Regulation (GDPR), which came into force in May 2018. That law shook up internet giants and global advertising firms, both of which had previously used—and at times abused—consumer data with little oversight. On December 11th India’s government introduced a bill that would force firms to handle data only with consumer consent and give the authorities sweeping access to them. The same day Scott Morrison, Australia’s prime minister, promised a review of privacy laws and said the competition authority will monitor how advertising is done on digital platforms. But the most important piece of legislation rhyming with GDPR right now is the California Consumer Privacy Act (CCPA), which comes into force on January 1st. To online businesses, it jars.

The Californian law copies some of the GDPR’s provisions. It gives consumers the right to know what online information is collected about them and how it is used, permits them to demand that their data be destroyed and to sue companies for data breaches. In some ways, the CCPA is looser than its European predecessor. It does not, for instance, insist that firms have a “legal basis” for collecting and using personal data or...



via Business Feeds

0 nhận xét:

Post a Comment