Security News > 2021 > January > Data privacy laws: A mini glossary

Wondering which data privacy laws affect your area or the type of data you're working with? Find out with this glossary of rules from around the world.

The United States is increasingly alone in not having a single overarching data privacy law as more countries adopt new statutes that have much in common with the European Union's General Data Privacy Regulation.

California Privacy Rights ActThe CPRA, passed in November 2020, adds to and supersedes the CCPA by adding several new data privacy rights for California citizens, such as: The right to correct incorrect data, the right to be notified of a company's intent to use data, and the right to have businesses minimize the use of what is stored, how long it's stored, and what stored data is used for.

The rule requires any requests for personal data to be stated clearly in writing, eliminates blanket consent to access of private data, requires companies to notify customers of data breaches within 72 hours of discovery, gives individuals the right to see what data is being collected, and requires "Right to be forgotten" provisions.

Personal Data Protection Act - SingaporeThe PDPA of Singapore, like other national data privacy acts, protects consumers from having their data collected and used without their expressed consent, and applies to any business transacting with citizens of Singapore.

The PDPA classifies personal data as anything that can be used to identify an individual, but makes careful distinction between certain bits of data that alone cannot identify an individual and how those bits of data are used-when combined with other data those non-personal points become personal, making its definition of PII somewhat flexible.

News URL

https://www.techrepublic.com/article/data-privacy-laws-a-mini-glossary/#ftag=RSS56d97e7