Many organizations’ privacy statements fail to meet common privacy principles outlined in GDPR, CCPA, PIPEDA, including the user’s right to request information, to understand how their data is being shared with third parties and the ability of that information to be deleted upon request, according to the Internet Society’s Online Trust Alliance (OTA).
Organizations also have a duty to notify users of their rights in an easily understandable matter. OTA analyzed 29 variables in 1,200 privacy statements against common themes in three major privacy regulations: GDPR, CCPA and PIPEDA.
While the organizations audited were mainly US-based and do not yet have a legal obligation to meet all requirements, these regulations represent general benchmarks for consumer privacy and set the stage for new laws going into effect in 2020, includ ..
Support the originator by clicking the read the rest link below.
