Privacy now a major focus for companies, but reporting structure still evolving

TrustArc’s third annual Global Privacy Benchmark Report found that as the list of global laws has grown and risks become more prevalent, demands on companies have increased substantially. Now 90% of medium and large enterprises have privacy offices, but the reporting line still varies significantly, with 18% reporting to a CPO, 16% respectively to a CISO or CFO, 13% to a CTO, and 10% to a CIO.

More News

Next Article

IT’S THE LAW (09/06/2022)

September 6, 2022

Eureka!! California breaks the log jam and forges ahead with privacy legislation – in the US, and for kids! Meet the California Age-Appropriate Design Code Act (ADCA). Modeled on the UK’s Age-Appropriate Design Code, this game-changer now awaiting the governor’s signature, will go much farther than the federal Children’s Online Privacy Protection Act (COPPA) protecting teens and children by default. Specifically, online sites deemed likely to access youth data will not be allowed to share that data unless they can prove: 1) it is necessary to do so to provide a specific service, or 2) that doing so is in the young person’s best interest. Further, businesses will in most cases be required to implement the most privacy-protective settings by default, and there’s no provision built in for parents or kids to opt-out via consent.

CDPI Privacy Newsletter
Previous Article

Children’s Privacy: Instagram (Meta) fined €405M for violating kids’ privacy; second largest GDPR fine to date

September 6, 2022

The fine is the second highest levied under GDPR (after Amazon) and the third highest for a Meta-owned company (after WhatsApp and Facebook) handed down by the Irish regulator. Plus, according to Politico which broke the story, the Irish DPC has at least six more investigations pending of Meta-owned companies. More information will be released by the DPC within the week.

CDPI Privacy Newsletter
Featured Article

Getty Offers Gen AI Tool Built Only with Licensed Images

September 28, 2023

Unauthorized training data isn’t an existential threat to generative AI but it’s certainly a headache for users and developers alike.  Most developers are trying to exclude materials that creators have explicitly labeled as unauthorized and citing “fair use” as justification for copying everything else.  Getty Images has taken an opposite approach, building its gen AI tool only on materials that are explicitly licensed.  It’s possible that tracing the provenance of training data will become a standard, similar to how organic food producers trace the origins of their ingredients.

CDPI Newsletter