GDPR establishes a set of customer rights regarding data and takes a broad view of what constitutes personal data, including some information not traditionally considered to be personal data within the United States (e.g. cookie data and IP addresses). How do I determine whether my company is ...
When it comes to data subject rights and freedoms, most companies focus on the right to access, modify, and delete data. But did you know there are actually eight rights under General Data Protection Regulation of the EU that give users control over their personal data and how it's used?
Any information- "Any" information can theoretically be personal data. Personal data can be true or false, sensitive or banal, and take any format. Relating to- The information must be about someone. The value of a house is not personal data until it can be linked to an individual (e.g...
Many businesses are worried about the CCPA/CPRA's broad definition of "selling" personal information. Under the CCPA (CPRA), "selling" personal information includes sharing it for any "valuable consideration" (benefit). A lot of routine business activiti
California Consumer Protection Act (CCPA) is the latest data privacy law after GDPR. Compliance with CCPA is required for businesses to minimize risk and penalties. Learn about Personal Information (PI) with this checklist and detailed whitepaper.
Learn more about what constitutes personal data in general and what constitutes children’s data After all, compliance is impossible if you’re not sure what you need to comply with. Schedule a demo of Osano today A Guide to California's Crowded Privacy Landscape Struggling to navigate the ...
The GDPR leaves much to interpretation. It says that companies must provide a “reasonable” level of protection for personal data, for example, but does not define what constitutes “reasonable.” This gives the GDPR governing body a lot of leeway when it comes to assessing fine...
If I am outside of the European Union do I have to care about GDPR at all? The answer to this is “probably yes”. There are two reasons why you have to care about this issue: 1) If your website receives visits from Europe, then you fall under this regulation.You may wonder how...
You must process personal data in a way that islawful,fairandtransparent. “Lawfulness”has a specific meaning under the GDPR. There are six legitimate, lawful grounds for processing personal data. You must satisfy at least one of these six criteria before your data processing is “lawful.” ...
Data that used to identify an individual constitutes personal data under the GDPR. Often, personal data comes in the form of an online identifier or with special characteristics that express physical, psychological, genetic, mental, commercial, cultural, or social identity. Personal data is a key ...