Featured Insight
Five Privacy Predictions for 2021 from Forrester
WireWheel
Forrester
Complete Guide to LGPD: Brazil’s Data Privacy Law
Written by Rick Buck, Chief Privacy Officer, WireWheelIntroduction The Brazilian Lei Geral de Proteção de Dados (LGPD) was first introduced on June 13, 2012 and went into effect on September 18. 2020. The administrative sanction provisions of the LGPD went into effect...
Complete Guide to GDPR: General Data Protection Regulation
Written by Rick Buck, Chief Privacy Officer, WireWheelIntroduction The General Data Protection Regulation (GDPR) was adopted on April 14, 2016 and went into effect on May 25, 2018. The GDPR governs data protection and privacy in the European Union and in the European...
Colorado Privacy Act (CPA): What You Need to Know
Written by Rick Buck, Chief Privacy Officer, WireWheelIntroduction The Colorado Privacy Act (CPA) was introduced on March 19, 2021, unanimously passed on May 26, 2021 and was signed into law on July 7, 2021 by Governor Jared Polis. CPA became the third comprehensive...
CCPA vs CPRA: A Guide to California’s Data Privacy Laws
Written by Rick Buck, Chief Privacy Officer, WireWheelIntroduction The California Consumer Privacy Act (CCPA) was introduced on January 3, 2018 and signed into law on June 28, 2018. The CCPA is the first comprehensive data privacy law to be adopted in the US and to...
Full Guide to Virginia’s Consumer Data Protection Act (CDPA)
Written by Rick Buck, Chief Privacy Officer, WireWheelIntroduction The Virginia Consumer Data Protection Act (CDPA) was introduced on January 1, 2021 to the House of Delegates and was signed into law by Governor Ralph Northam on March 2, 2021. The CDPA became the...
Privacy Law Update: September 20, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates US Panel Votes to Approve $1 Billion for FTC Privacy Probes The US House Energy and Commerce Committee passed a proposal to increase funding to the Federal Trade Commission to support a new...
Venture Capital Sees Big Opportunities in Data Privacy
Privacy has three key drivers: legislation, brand risk, and opportunity. “On one hand, you see strong winds from a regulatory and compliance perspective,” notes WireWheel CEO Justin Antonipillai. “And virtually every company is trying to find a solution to make sure...
Privacy Law Update: August 30, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates UK Announces Independent Adequacy Decisions In June, the European Commission adopted a pair of adequacy decisions for the U.K., and now the British government has laid out a new slate of...
Culture Matters
Understanding corporate culture is a critical first-step toward building a data privacy programWritten by Virginia Bartlett, Privacy Operations Expert, WireWheelDuring my tenure as a privacy officer in companies across many different industries, I’ve seen differing...
China Passes the Personal Information Protection Law (PIPL)
Written by Rick Buck, Chief Privacy Officer, WireWheelOn August 18, China introduced a third and final version of the Personal Information Protection Law (PIPL) law. This new law will take effect on Nov. 1, 2021. In many respects, it takes a similar approach to the EU...
Privacy Law Update: August 23, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates One Year after Schrems II, the World Is Still Waiting for U.S. Privacy Legislation As the invalidation of the EU-U.S. Privacy Shield still casts uncertainty over international data flows more...
Vaccine Passports: Case Studies, Technologies, and Policy Considerations
The Spokes 2021 conference included a panel on vaccine passports, moderated by Virginia Bartlett, Privacy Operations Expert with WireWheel. The panel also included Maureen R. Dry-Wasson, VP, Group General Counsel and Global Privacy Officer with Allegis Group; Scott...
Privacy & Marketing: Strategies for a Cookieless Future
Marketing and privacy are on a collision course – and it’s a trajectory that has been plotted for some time now, says Forrester Senior Analyst Fatima Khatibloo. This course was set, in part, because marketing has become “too good at connecting people and devices with...
Privacy Law Update: August 16, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates Brazil Announces National Data Protection Council The Brazilian government has announced the members of the National Council for the Protection of Personal Data and Privacy (CNPD) as part of the...
National Security and Privacy: Recent Developments and Emerging Challenges
This year’s Spokes conference hosted a panel on national security and privacy, moderated by Charlie Savage, Washington Correspondent for The New York Times. Panelists included Travis LeBlanc, a Partner with Cooley and Privacy and Civil Liberties Oversight Board...
China’s Data Security and Privacy Laws
To date, China relies on several privacy and security related laws. It does not have a comprehensive data privacy law. That’s about to change. China is moving forward with a set of privacy and security laws (Personal Information Protection Law, Data Security Law)...
Preparing for CPRA, CDPA, and Other Emerging State Privacy Laws
WireWheel’s Spokes 2021 conference included a panel of experts discussing current and emerging privacy laws around the U.S., including CPRA and CDPA. The panel was moderated by Rick Buck, Chief Privacy Officer for WireWheel, and panelists included Kristi Preuss,...
Privacy Law Update: August 9, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates Brazilian Data Protection Body Pledges to Enforce "Responsive Regulation" As sanctions for non-compliance with data protection regulations come into force, Brazil’s National Data Protection...
Key Topics in Privacy Leadership Today
During the Spokes 2021 conference, WireWheel hosted a panel of privacy experts to discuss some central issues facing data privacy regulation and technology. Justin Antonipillai, CEO and Founder of WireWheel, moderated the panel, which also included Daniel Solove,...
Engineering Privacy at Scale
The nature of privacy and what it means for businesses, consumers, and regulators, vary across organizations, industries, consumer segments, and jurisdictions. Even within a single organization, the conception of privacy (and its perceived impact) will differ from...
EC’s Adequacy Decision Approves International Data Transfers to the UK
The European Commission’s latest verdict ascertains that data transfer isn’t added to the list of exchanges Brexit has disrupted. On June 28, 2021, Europe’s top court adopted two key “adequacy” decisions for the United Kingdom—ensuring the legitimization of the flow...
Privacy Law Update: August 3, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates The Uniform Personal Data Protection Act Is Here In July 2021, the Uniform Law Commission (“ULC”) voted to approve the Uniform Personal Data Protection Act (“UPDPA”). The UPDPA is a model data...
California Attorney General Announces New Ways for Consumers to Assert Privacy Rights
Written by Rick Buck, Chief Privacy Officer, WireWheelThe California Office of the Attorney General recently announced two ways to make it easier for consumers to assert their privacy rights and business to comply with the CCPA opt-out rules related to the sale of...
The View from the EU: A Discussion with the International Data Transfers and Protection Unit’s Bruno Gencarelli
Bruno Gencarelli, Head of the EU’s International Data Flows and Protection Unit, delivered the closing remarks for the Spokes 2021 conference. The conversation kicked off with a discussion about the Schrems II decision coming out of Europe, with wide-reaching...
NFTs: The Privacy Angle
Non-Fungible Tokens (“NFTs”), as the name implies, are tokenized representations of non-fungible assets (physical or digital). Each NFT is unique and contains unique identifiers, data, and metadata. The NFT not only identifies what that NFT represents – a work of art...
Privacy Law Update: July 26, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates WireWheel CEO Foresaw the Impact of Data Privacy on Human Rights, Trade and National Security We spoke with the CEOs of companies that participated in the recent AWS Startup Showcase: Innovations...
Crafting Better Privacy Laws, Based on the California Model: A Conversation with Alastair Mactaggart
Spokes 2021: Day Two Keynote Session with Alastair MactaggartOn the second day of the WireWheel Spokes 2021 conference, WireWheel CEO and founder Justin Antonipillai hosted a conversation with Alastair Mactaggart, board chair and founder of Californians for Consumer...
Privacy Law Update: July 19, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates Update by the California Attorney General Could Be a Game-changer The Office of the Attorney General of California made a small addition to its frequently asked questions page on the California...
What Privacy Officers Need to Know About Synthetic Data
Regulation, cost, and other factors can hinder the great many benefits of access to data for analysis. This impedes not only the efforts of organizations to rationalize resources (e.g., workforce analytics, resource allocations, and consumer insights), but research...
Privacy Law Update: July 12, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates Biden Executive Order Calls For Scrutiny Of Mergers, Data Privacy U.S. President Joe Biden signed an executive order to promote competition in the American economy. The executive order includes a...
Polis Signs Final Flurry of Business Bills Despite Veto Pushes
Written by Ed Sealover, Denver Business JournalGov. Jared Polis finished off a monthlong bill-signing tour over the past week and a half by inking 18 business-focused laws that create a groundbreaking data privacy law, ban certain types of plastic containers and delay...
Dark Patterns and Privacy by Design: A Delicate Balancing Act
I think we're watching builders and developers understand that part of the product success is that it has a privacy by design component to it and privacy was thought about upfront and built into the greater feature-functionality. or production system that's being...
Privacy Law Update: July 6, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates The European Data Protection Board (EDPB) Finalises Guidance on International Transfers of Personal Data Following Europe’s Top Court’s Schrems II Decision The guidance outlines how organisations...
Measuring What Matters: How to measure privacy’s impact
In the last decade, the ability to collect, analyze, process, and monetize personal information has increased at an unprecedented rate. The growth rate of the marketing technology sector (“Martech”) – from 150 available solutions in 2011 to 8,000 at last count – is a...
Dark Patterns: Another really creepy line
The term “dark patterns” was coined by Harry Brignull in 2010. Brignull, who has a PhD in Cognitive Science, defines dark patterns as “tricks used in websites and apps that make you do things that you didn't mean to, like buying or signing up for something”...
Non-Fungible Tokens: The convergence of creator-centric ecosystems
Written by Luca Cosentino, Product Lead, Oasis Unlike fungible assets which are interchangeable (i.e., every bitcoin, ether, or dollar is equivalent to every other bitcoin, ether, or dollar), non-fungible tokens (NFTs) are unique and contain unique identifiers, data,...
4 Ways Integrations Help With DSAR Fulfillment
Written by Stephen Buko, Senior Director, Product Implementation, WireWheelMany large companies are faced with a challenge as they process more and more DSAR requests. For many companies, depending on how many requests you get, it is a team effort requiring someone...
WireWheel helps Shoes.com manage consents and preferences—on a compressed timeline
Even under the best of circumstances, getting a clear picture of customer data and setting up a data compliance system can sometimes be a challenge, requiring multiple teams working together to get the job done. Now imagine trying to accomplish this task in the midst...
Privacy Law Update: June 14, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates A Deeper Dive Into The New Standard Contractual Clauses The good news is that the new SCCs allow companies to take a risk-based approach when making assessments on whether a third country’s...
Colorado Passes a Data Privacy Law
Colorado Passes a Data Privacy Law Law would be effective on July 1, 2023Written by Rick Buck, Chief Privacy Officer, WireWheelOn June 8, 2021, the Colorado Senate approved House amendments to the Colorado Privacy Act (CPA) (SB21-190). The bill now goes to Governor...
EU Releases New Standard Contractual Clauses Language
Written by Rick Buck, Chief Privacy Officer, WireWheelOverview On Friday, June 4, 2021, the European Commission approved and adopted a new version of the Standard Contractual Clauses (SCCs) that updates the rules on how data may be transferred outside of the EU....
New Technology Meets Old Unanswered Questions: Data privacy in the age of virtual reality
In a single recommended 20-minute session in VR, a headset can generate approximately two million data points and unique recordings of body language. Immersive tech can track huge quantities of highly sensitive information, creating both lucrative opportunities for...
Privacy Law Update: June 7, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates The Beginning of a New Era for International Transfers- New SCC’s are Here The European Commission published the long awaited final standard contractual clauses for transfers of personal...
Consent and Preference Management: Regulatory table stakes or consumer insight?
When it comes to data privacy, the business aphorism “it’s better to ask forgiveness than ask permission” does not apply. And the more consumers learn about how their data is used, the less forgiving they have become. Consumer attitudes are very clear on this. For...
Privacy Law Update: June 1, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates What’s Behind the EU’s New Cloud Code of Conduct? It has been nearly a decade since former European Commission Vice President Neelie Kroes pitched plans for an EU Code of Conduct for cloud...
Privacy Law Update: May 25, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates Android Introduces New Privacy-friendly Sandbox For Machine Learning Data At the I/O developer conference on Tuesday, Google announced a range of new privacy measures, including a new partition...
What Do I Need to Do for My Website to Be Compliant?
Today… and into the futureWritten by Rick Buck, Chief Privacy Officer, WireWheelAfter new privacy laws passed within the last 12 months in both Virginia and California, many clients ask us what they need to do to make sure that their website is compliant today and...
Privacy Law Update: May 17, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelThere were no substantial legislative changes this week. Hope you enjoy the expanded newsworthy updates in its place. Newsworthy Updates Data Privacy: How the Growing Field of Regulations Impacts Businesses The...
U.S. Data Privacy Regime: It’s a Long Road to Efficacy
Written by Guest blogger: David Stauss, partner at Husch Blackwell LLPWith the passage of the California Privacy Rights Act (CPRA) comes the creation of the California Privacy Protection Agency (CPPA) which will have full administrative power to implement and enforce...
6 Keys to Unlocking Privacy at Scale
Privacy and Data Governance Privacy is complex by virtue of its comprehensive nature. From the regulatory perspective, privacy legislation encompasses data security, consumer rights, and business obligations. A complexity, and risk, that is further compounded by the...
Privacy Law Update: May 10, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNewsworthy Updates Private right of action proving problematic for state privacy lawsTen states are currently considering data privacy legislation: Alabama, Alaska, Colorado, Connecticut, Illinois, Massachusetts,...
Privacy is Dead! A History
Written by Rick Buck, Chief Privacy Officer, WireWheelIn 1897 Mark Twain was contacted by the New York Journal “to inquire whether the rumors that he was gravely ill or already dead were indeed true.” His response as recorded in the article published on 2 June 1897...
Privacy Law Update: May 3, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelAnother interesting week in the privacy world. The two key standouts this week include: new movement on updated Standard Contractual Clauses and the Privacy Shield program Florida’s HB969 which was believed to be...
Comparing CCPA, CDPA, GDPR: Similarities and Differences
Written by Rick Buck, Chief Privacy Officer, WireWheelCCPA, CDPA, GDPR Similarities and Differences Many new state privacy regulations are being introduced or coming into enforcement and are creating a complicated compliance environment that many organizations are...
Apple iOS 14.5 Release Is Happening Today
The long-awaited Apple iOS 14.5 is happening today. Apple’s new App Tracking Transparency (ATT) requirement, mandates that developers ask for permission to track users for targeted advertising. Apple’s approach with ATT joins other industry giants projects, such as...
Privacy Law Update: April 26, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelNever a dull moment in the Privacy world!Newsworthy Updates Privacy and the EU’s Regulation on AI: What’s New and What’s Not? The draft EU Regulation on Artificial Intelligence (the “Regulation,” available here)...
Five Critical Tips for the Global Adoption of Vaccine Passports
More than a year into the pandemic, the world is ready to go back to normal. The acceleration of vaccinations suggests that ‘normal’ may come earlier than anticipated. However, as governments now work on transition plans from a pandemic to a post-pandemic environment,...
Privacy Law Update: April 19, 2021
Written by Rick Buck, Chief Privacy Officer, WireWheelThis was a quiet week for State privacy bills. The Washington Privacy act did not pass in session this week. The 2021 legislative session ends April 25. If the WPA does not pass the House, this would be the third...
Data Privacy: A convergence of Security, Compliance, and Conception
Data Privacy laws are comprehensive. They encompass not only conceptions of privacy – itself still subject to debate – but also security, consumer rights, business obligations, and of course regulatory compliance. As such, data privacy laws are also complex. The...
Zero Party Data
The writing is on the wall. Increasingly people will take control and will worry about their personal information. They do want more control over how their data is shared. Now here's the thing. Marketing data is critical to how we run our businesses and how we...
Privacy Shield 2.0?
The US and the European Union have recently opened talks around privacy protections for transatlantic data flows which could signal a resurrection of the Privacy Shield program. This is the third attempt for an adequacy mechanism to replace Safe Harbor, and Privacy...
Privacy Predictions Roundup
WireWheel CEO Justin Antonipillai has talked with many data privacy industry leaders, analysts, and advocates who have shared their insights, experience, and predictions about data privacy from both an industry and regulatory perspective. And much has happened to...
Privacy Law Update: West Virginia’s Proposed Privacy Law
Written by Rick Buck, Chief Privacy Officer, WireWheelNote: The West Virginia legislature closed its session on April 10 without passing its proposed bill so the bill is considered dead for now. The following blog outlines what was proposed. • • • On March 15, West...
Privacy Law Update: Virginia’s Consumer Data Protection Act – Final
Written by Rick Buck, Chief Privacy Officer, WireWheelFrom a privacy perspective, 2021 is getting off to a quick start in the United States. Baseline privacy bills are currently pending in at least 13 state legislatures. On March 2, 2021, Virginia Governor Northam...
Are Marketing Metrics Blinded by the Light?
The great twentieth century composer and iconoclast, Igor Stravinsky, said “To enjoy to the full the conquests of daring, we must demand that it operate in a pitiless light.” (Poetics of Music in the Form of Six Lessons, 1947). Digital marketers do not seem to agree....
Marketing Technology 101 for Privacy Officers: What Is the Marketing Team Up To?
A marketer has to balance all of the tools that they're going to deploy and utilize all of the data at their fingertips. But they more and more have to be really attentive to their brand and their brand's reputation. And…data they're utilizing, and the ways in which...
Privacy Technology Implementations: Lessons Learned
Everybody views data privacy through a different lens: through your general counsel; through your technology team; or even your technology stack. “What problems were you trying to address when picking a data privacy solution?” asks Stephen Buko. Stephen is WireWheel’s...
Is This the Way the Cookie Crumbles?
Written by Rick Buck, Chief Privacy Officer, WireWheelAlmost from the beginning of the internet’s transition to an e-Commerce superhighway, cookies have been the primary way most advertisers target users online. Cookies track your browsing history, building user...
Data Privacy Day in the Years to Come
January 28 marked the annual Data Privacy Day. In recognition, WireWheel CEO Justin Antonipillai brought together a group of leading international privacy experts to discuss what changes they posit for both the near and long term. The Acting Under Secretary, U.S....
Privacy Merits Pride of Place
A lot of the way that we approach security can be applied to privacy. [Like] the methodology of ‘Defense in Depth.’ Likewise, with privacy, I think the technology and the process that you put in place can provide the same kind of maximized opportunity for spotting...
Privacy Law Update: Virginia’s Consumer Data Protection Act
Written by Rick Buck, Chief Privacy Officer, WireWheelFrom a privacy perspective, 2021 is getting off to a quick start here in the United States. Privacy bills in New York and Minnesota are moving forward. Washington’s Privacy Act is gaining energy and now has a...
WireWheel Supports Global Privacy Control (GPC)
Written by Rick Buck, Chief Privacy Officer, WireWheelRemember Do Not Track (DNT), the web browser setting that requests that a web application disable tracking of an individual user? Well, it looks like it has a new sibling, the Global Privacy Control (GPC). The GPC...
Five Privacy Predictions for 2021 from Forrester
“Before I dive in into the specific predictions...[I just want to say that] I think that privacy professionals today understand this very well, but sometimes the larger organization might struggle to see it.” Privacy is about requirements, it’s about regulation, it’s...
Consumer Retargeting: What’s the Problem?
“I admit that I don't understand.” says Alyce General Counsel Andy Dale. “I don't understand the [consumer’s] frustration and maybe it's because in law school you get pounded with this concept of damages. How is the person damaged?” He asks: What is frustrating about...
Ethical Marketing: The First Consumer Touchpoint is Trust
The AdTech industry is in a bit of a crisis. “We have a system that is out of alignment,” Hearst Magazines president and incoming IAB [1] chairman Troy Young said….The ad tech industry has tried to address the problem on its own...But those efforts have proven...
Privacy by Design
In his seminal 1965 book, Unsafe at Any Speed: The Designed-In Dangers of the American Automobile, Ralph Nader accused American car manufacturers of not only being reticent to introduce safety features, but purposefully designing in features that created unsafe...
Federal Privacy Law in 2021?
On December 9, just one week after WireWheel’s SPOKES Privacy Technology Conference, where the concept of a U.S. federal privacy law was widely discussed, the Senate Committee on Commerce, Science, and Transportation held a hearing that raised this very issue. Framing...
Data Privacy and the Pandemic
A Principled Approach Data privacy and protection has become even more top-of-mind during the COVID-19 pandemic. What were once arcane matters for cybersecurity and governance professionals, legislators, and marketers, has become public discourse. The argument for...
Another Round of Proposed CCPA Modifications
On December 10, 2020, the California Attorney General proposed new modifications to the CCPA. The proposed modifications are in response to comments received about the October 12, 2020 proposed modifications to the “final” CCPA regulations, issued August 14, 2020....
Privacy Shield: Two Key Players Discuss “What Now and Next?”
In the plenary session of WireWheel’s SPOKES Privacy Conference two central figures in crafting transatlantic data transfer protection schemata ― Bruno Gencarelli and Justin Antonipillai ― discussed where things are post-Schrems II, and where they may be headed. Bruno...