The 10th Online Trust Audit analyzed 29 variables in 1,200 privacy statements to determine how well they convey information to users. A new report called “Are Organizations Ready for New Privacy Regulations?” takes another look at these privacy statements in the context of common themes across three global privacy regulations – the European Union’s General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA).
The report revealed that many organizations’ privacy statements fail to meet common principles outlined in GDPR, CCPA, PIPEDA, including the user’s right to request information, right to understand how their data is being shared with third parties and the ability of that information to be deleted upon request.
We discussed the common themes across major privacy legislation and how organizations are preparing for these new laws.