Privacy laws are changing, and international regulations now affect companies worldwide, whether they operate in a given region.
We offer a customized privacy consultation service to address client needs. Privacy laws are changing, and international regulations now affect companies worldwide, whether they operate in a given region.
For example, North American companies, with no business in the European Economic Area, but have a website in which a European Citizen can subscribe to information or which target the European market, are subject to GDPR. Even though the regulation has been in force since May 25, 2018, many North American companies are still not ready for GDPR or have implemented the necessary policy and contractual requirements to manage and obtain information on a European Citizen. For example, have you implemented policy and procedures to comply with GDPR that not only support the privacy principles contained in GDPR, but also are you able to respond to the regulatory requirements for a data breach? This is just one of the many requirements that require you to assess your information management policies and procedures.
Elsewhere there are changes to privacy laws. In California, the California Consumer Protection Act came into force on January 1, 2020. While there are definitions on what business is impacted by this law, have you done an assessment to determine if you are? If you are, are you compliant with the law? Do you have the necessary contractual, policy, and breach management procedures in place? Have you taken all the necessary steps to secure your client’s personal data? Have you assessed your potential liability and taken appropriate actions?
In Canada, the Government of Canada has proposed the Digital Charter Implementation Act, 2020. While this is not the law of the land yet, it does propose individual rights similar to GDPR, proposes enforcement capabilities for the Office of the Privacy Commissioner and changes to the Personal Information Protection and Electronic Documents Act (PIPEDA). Have you considered what is being proposed and assessed your information operations (policy, security, and procedures) for future compliance and liability?
From Privacy Assessments, Anti-Spam Legislation Compliance, Information Security Audits, Virtual Data Protection Officer Services to Technical Security Assessments, CyberHunter Solutions is at the cross section of cyber security and privacy to provide a wholistic security consulting service that can be customized to meet your need regardless of the size of your company. Talk to us about how we can help you.