From GDPR requirement to U.S. State risk-assessment mandates, DPIAs and PIAs are essential governance tools for the modern data economy. A Data Privacy Impact ...

As noted in last week’s post, privacy risk assessments are now required in several states. Of the 19 U.S. states with comprehensive consumer data privacy laws, all but two mandate that businesses ...

Collects and uses customer or employee personal information. Participates in an industry sector that is considered high risk or critical infrastructure. Offers securities as a publicly traded company.

Forbes contributors publish independent expert analyses and insights. Pam Kaur covers fintech and bank tech innovation and regulation. For years, data privacy in ...

Jodi Daniels is a privacy consultant and Founder/CEO of Red Clover Advisors, one of the few Women’s Business Enterprises focused on privacy. There's a reason companies hire outside auditors and ...

Protecting the confidentiality of the personal data entrusted to us by our customers, employees, and business partners is of utmost importance to us. That’s why we take proactive approaches to keep ...

The New Jersey Data Privacy Act has been in effect since Jan. 15, 2025, and with its implementation, this state is one of among approximately half of U.S. states ...

LEXINGTON, Ky. (WKYT) - Kentucky will implement a comprehensive consumer data privacy framework on Jan. 1, 2026, establishing new rights for residents and obligations for businesses that collect ...