Ultimate guide to international data protection and privacy laws
Introduction
Human beings have many things in common and we all live in one world, together. However, when it comes to data privacy laws, the saying “there are many ways to skin a cat” seems apt.
Data privacy laws are popping up or being adapted to suit new tech environments across the globe. But there is often variation between them that reflects the focus of the country in question. What they all have in common, however, is to try to build more ethical data processing procedures that put the privacy of an individual center stage.
This guide looks at some of the most famous/infamous data privacy laws across the globe to give you a taste of each.
Data privacy laws: A privacy primer from five countries
Around 80 countries have enacted data privacy laws. This guide looks at five countries, including the arguably most famous privacy law, the EU’s GDPR. Many of these countries have set precedents that others follow.
European Union: General Data Protection Regulation (GDPR)
When was GDPR enacted?
The GDPR was enacted on May 25th, 2018. Since then, it has had more attention than any data protection law, ever. The GDPR was brought in to reflect the changes in the technology and consumer landscape. The GDPR updates the 1995 Data Protection Directive 95/46/EC or DPA.
Who is affected by GDPR?
GDPR applies to organizations that collect, store, share and process data that could be used to identify an individual from an EU state. It affects organizations of any size and any type no matter where they operate from in the world. Companies with less than 250 employees do have some reduced requirements for documentation.
What data is covered by GDPR?
GDPR is all about personal data. The law classifies data into two types:
*** This is a Security Bloggers Network syndicated blog from Infosec Resources authored by Susan Morrow. Read the original post at: http://feedproxy.google.com/~r/infosecResources/~3/X9x0GsEplfQ/
