Another Privacy Law is Online!
Hello all, and happy Thursday!
Read NowGet an overview of the simple, all-in-one data privacy platform
Manage consent for data privacy laws in 50+ countries
Streamline and automate the DSAR workflow
Efficiently manage assessment workflows using custom or pre-built templates
Streamline consent, utilize non-cookie data, and enhance customer trust
Automate and visualize data store discovery and classification
Ensure your customers’ data is in good hands
Key Features & Integrations
Discover how Osano supports CPRA compliance
Learn about the CCPA and how Osano can help
Achieve compliance with one of the world’s most comprehensive data privacy laws
Key resources on all things data privacy
Expert insights on all things privacy
Key resources to further your data privacy education
Meet some of the 5,000+ leaders using Osano to transform their privacy programs
A guide to data privacy in the U.S.
What's the latest from Osano?
Data privacy is complex but you're not alone
Join our weekly newsletter with over 35,000 subscribers
Global experts share insights and compelling personal stories about the critical importance of data privacy
Osano CEO, Arlo Gilbert, covers the history of data privacy and how companies can start a privacy program
Upcoming webinars and in-person events designed for privacy professionals
The Osano story
Become an Osanian and help us build the future of privacy!
We’re eager to hear from you
Update: April 12, 2024
Published: March 28, 2024
Hello all, and happy Thursday!
It’s been a big week for AI regulation—we’ve got two stories about AI regulation in Utah and the UK, respectively, and that’s not to mention the big AI regulation that Brussels is cooking up (check out What Is the EU AI Act? A Comprehensive Overview for our write-up on that particular proposed regulation).
I’m sure we’re all tired of hearing about AI, but the fact remains: it’ll be transformative for businesses and data privacy as a whole. Fundamental data privacy issues like data protection, notice, consent management, data minimization and retention lie at the heart of AI.
Regulators have learned from data privacy, too; the GDPR and laws like it were in response to data privacy practices that were less-than ethical. It seems like regulators are trying to move fast to anticipate AI’s impacts, rather than merely react. Though given the speed at which the technology is advancing, it's not clear whether they’ll be quick enough.
Best,
Arlo
P.S. I know celebrity gossip moves fast and this feels like yesterday’s news, but the article in this week’s newsletter on Kate Middleton’s near-data breach is worth a read. Not all of us have Kate Middleton’s profile, but all of us have health data to protect!
The U.S. Department of Transportation said it will review how airlines protect personal information about their passengers and whether they are making money by sharing that information with other parties. Specifically, the review will focus on the 10 biggest U.S. airlines and cover their collection, handling, and use of information about customers.
Recently, Utah Governor Spencer Cox signed Utah Senate Bill 149 (SB 149) into law, also known as the Artificial Intelligence Policy Act (the AI Policy Act). This is the first comprehensive state law on AI in the U.S., creating a model that other states will likely follow. The new law imposes unique restrictions on “regulated occupations,” especially those in health care.
While many eyes watch the final developments of the EU Artificial Intelligence Act in Brussels, other corners of the world are also considering how best to approach the regulation of AI. In November 2023, Lord Holmes of Richmond, a member of the influential House of Lords Select Committee on Science and Technology, introduced a private members' bill called the Artificial Intelligence (Regulation) Bill. On 22 March, Lord Holmes' bill received a second reading in the House of Lords, together with more than two hours of reaction from fellow peers in the upper chamber.
Data privacy officials in the United Kingdom are currently investigating a privacy breach that impacted the Princess of Wales, Kate Middleton, after three hospital workers reportedly sought access to the royal’s private medical information. But Her Majesty's medical privacy problems are all too familiar for many in the United States, where one in three people was impacted by a health-related data breach last year.
Privacy litigation remains one of the fastest-growing areas of litigation in the U.S. The recent surge in litigation alleging that the use of Meta Pixel, a tracking technology, violates state wiretap laws and/or the Video Privacy Protection Act (VPPA) is a prime example of this approach. Now, the latest trend in privacy litigation centers on New Jersey’s "Daniel's Law." This law prohibits the posting or disclosure of address and telephone information of certain New Jersey public officials, including judges, prosecutors, and law enforcement. The suits allege the data brokers and look-up services did not take down protected contact information that had been posted on public sites within the proper time frame as required under the law.
Unpacking the meaning of similar data privacy concepts—such as personal information (PI) and personally identifiable information (PII)—may seem burdensome, but for businesses tasked with complying with a growing number of regulations, sifting through the nuances is critical to staying compliant. In this blog, we focus on PII, its role in the context of data privacy, as well as differences between PII and PI, its relation to various regulations, and how to remain compliant.
If you’re interested in working at Osano, check out our Careers page!
Arlo Gilbert is the CEO & co-founder of Osano. An Austin, Texas native, he has been building software companies for more than 25 years in categories including telecom, payments, procurement, and compliance. In 2005 Arlo invented voice commerce, he has testified before congress on technology issues, and is a frequent speaker on data privacy rights.
Osano is used by the world's most innovative and forward-thinking companies to easily manage and monitor their privacy compliance.
With Osano, building, managing, and scaling your privacy program becomes simple. Schedule a demo or try a free 30-day trial today.