Data law confusion

Data law confusion

While the General Data Protection Regulation (GDPR) in the EU has been in place for a few years now, other countries and regions have adopted their own version of enhanced privacy legislation to keep up with the pace of change. 

One such region is California. The California Consumer Protection Act (CCPA), is modeled after the GDPR in many respects, but there are also some key differences in how data is collected and the consequences companies can potentially face when breaches occur. The CCPA came into effect at the start of 2020, but the enforcement phase actually begins on July 1, 2020.  In this blog, we'll explore how to future-proof your communication security when data privacy requirements are evolving.

Even if your company isn’t located in California, or anywhere else in the USA, if you’re doing business or have customers there, you need to be aware of how this legislation can impact you. The same applies to companies outside Europe with the GDPR; you don’t have to be based there to be directly impacted with the legislation if you collect data on EU residents. We’ll explain more on this in the next blog post with a helpful infographic. 

New data protection legislation is coming
California is the first US state to enact a new data protection policy, but more states are poised to soon follow suit. Aside from countries or regional jurisdictions introducing their own flavor of data protection, some countries, such as the Netherlands, continue to expand privacy standards alongside existing GDPR regulations.

This was done recently in the form of a new data protection standard called NTA 7516, impacting healthcare and municipal institutions as well as professional practices that need to email data or transfer files securely. This standard outlines a number of measures to ensure privacy sensitive health related information can be safely exchanged digitally.

The NTA 7516 only applies to the Netherlands, but more countries will eventually introduce new data protection requirements. Some will surely be industry specific, such as for the healthcare or legal sectors, and will establish new requirements on how sensitive information is safeguarded.

Choosing the right secure communication platform now to keep up with these data protection changes, can spare you headaches later. We’ll explain.

How to keep up with data protection legislation changes
The below graphic from Freedom House gives a snapshot of the types of privacy legislation being proposed worldwide. As you can see, it’s more than a handful of countries and could have massive potential business implications in the years to come.

DataProtection_worldwide1But let’s face it. You can’t have a separate communication solution to manage the wide range of compliance requirements in each market or country. Well, you could, but it wouldn’t be practical (or economical).

Choosing a secure communication platform with a track record of keeping up with industry changes will give you more confidence that your organization is able to fully comply with current as well as future regulations when they arise.

Future-proof security solutions can simplify your life
Zivver, a European scaleup company for secure communications, was already helping organizations of all sizes to be GDPR compliant before the legislation came into effect in May, 2018.

Since then, they have become a market leader and have further developed their smart technology platform to help thousands of companies comply with additional privacy legislation, such as NTA 7516 in the Netherlands. In fact, Zivver was the first secure communication provider to fulfill the certification requirements set out by NEN, the governing body of the NTA legislation.

When the UK eventually implements another data protection standard to succeed the GDPR, such as a modified version of the Data Protection Act (DPA), or UK GDPR, a smart and agile platform such as Zivver can ensure your business is able to properly comply from the start.

You can read more about Zivver’s secure communication platform here.

Still struggling with GDPR compliance? We’re here to help.

It’s hard to think about potential future requirements that may impact your business if you’re struggling to comply with current legislation, such as the GDPR. 
If that sounds like you, don’t worry -- you’re not alone! Some studies have shown nearly half of organizations in markets like the UK are not yet fully GDPR compliant, but the time to remedy that is now.

Download Zivver's free easy-to-follow GDPR Checklist, and you can be on your way to properly securing your communications in just a few clicks.


Written by

Kate O'Neill

Originally published on June 19, 2020

Last update on July 27, 2021