Navigating data privacy legislation in a global society – TechCrunch

Navigating data privacy legislation in a global society – TechCrunch

October 2, 2021 Off By administrator

China, the most populous nation in the world, passed its first significant data privacy legislation in August. Moving forward, any global business or aspiring startup doing any type of trade or offering services online likely will be affected because they’ll be engaging with Chinese residents covered by the Personal Information Protection Law (PIPL).

Although this seems like pretty significant news, the legislation itself is similar to the EU’s General Data Protection Regulation (GDPR), which was introduced in 2016. What is shocking, however, is that companies had two years to prepare for GDPR, while PIPL goes into effect on November 1, 2021.

This leaves companies scrambling to figure out compliance. In addition, it highlights the importance and urgency of data privacy on a global scale. China marks the 17th country to establish a GDPR-like privacy law. Which global superpower is not on this list?

The United States has yet to adopt a broad-reaching, consumer-focused national data privacy law — despite multiple studies indicating that Americans want more control over their personal data online. This oversight has significant implications for the technology industry in particular.

With so much going on, it’s clear that we’ve reached a critical juncture in the maturation of data privacy. How we proceed will affect potentially billions of consumers worldwide as well as the development of companies ranging from the smallest startups to the biggest global enterprises. This moment demands careful consideration.

As such, let’s attempt to break down the present data privacy conundrum, starting first by examining how data privacy legislation is evolving in the U.S. and what this means on a broader scale, before diving into how data minimization attempts address these issues. After weighing these integral pieces of the data privacy puzzle, I will conclude by issuing a call for global data privacy standards that place people firmly in control of their data.

Data privacy in the U.S.

The data privacy landscape in the U.S. is complicated. In short, on the federal level, there has been movement but no overarching data privacy policy in place. There are industry-specific privacy regulations — The Health Insurance Portability and Accountability Act (HIPAA) governing healthcare and Gramm-Leach-Bliley Act (GLBA) covering consumer financial products.

There is also the Children’s Online Privacy Protection Rule (COPPA), designed to protect children under 13. The FTC jumps into the mix as well because it can go after an app or website that violates its own privacy policy (the Federal Trade Commission Act).

But our federal government hasn’t passed a sweeping bill that protects consumers’ digital privacy rights, leaving it up to individual states to do it themselves (e.g., California’s CCPA, Virginia’s VCDPA and…

(Excerpt) To read the full article , click here
Image credit: source