A constantly changing regulatory environment has become the “new normal” for data privacy, and 2020 is no exception. The California Consumer Privacy Act (CCPA) went into effect in January and introduced one of the most sweeping requirements the U.S. has seen at a state level. In addition, the global health crisis has seen concerns around new and emerging uses of personal data. As the complexity of regulations increases, so does the responsibility for organizations to manage personal data and ensure their security and privacy teams are aligned to respond to security incidents and potential privacy breaches.
Security and privacy experts from IBM, Eden Autism, Iron Mountain and American Cyber Security Management recently discussed the current regulatory environment and shared best practices on managing a privacy practice and being prepared to respond to privacy-related cybersecurity threats. Below is a summary of the key takeaways.
A Foundational Privacy Practice Helps Organizations Manage Change
In order to stay ahead of change and lessen its impact, panelists recommend that organizations develop a foundational privacy practice. Having a strong privacy practice means having robust policies, processes and tools in place to manage data privacy and breach notification requirements. The practice should ensure that employees are being regularly communicated with about training or changes that may affect them. For example, when employees shifted to working remotely overnight due to the global health crisis, new protocols needed to be quickly implemented for handling printouts and hard copies that include personal data. Having processes and tools in place to identify and communicate those changes helped teams adapt quickly and ensure compliance.
As a ..
Support the originator by clicking the read the rest link below.
