Privacy Guidance & Best Practice

The following documents give guidance on ensuring that the information you collect from your customers is done so in a secure and legal manner.

They also contain best practice information.

Global Privacy, Guidance

CPRA vs CCPA: What are the Differences?

In 2018, California passed the California Consumer Privacy Act (CCPA), which was considered a landmark privacy law that gave Californians more control over their personal data. However, on November 3, 2020, Californians approved Proposition 24, also known as the...

Read More

GDPR, Guidance

GDPR The Data Audit

GDPR Audits: A Comprehensive Guide to Protecting Your Business In today's digital world, businesses collect and store vast amounts of data on their customers and clients. While this data can be incredibly valuable for improving products and services, it also...

Read More


Outsource your Data Protection Officer (DPO)

Outsourcing your Data Protection Officer PrivacyTrust provides our clients with Data Protection Officers as a service. This article provides advice on whether you need to appoint a data protection officer and their role and function. What is a data protection...

Read More

GDPR, Guidance

Understanding Privacy Shield and GDPR

GDPR and Privacy Shield: Protecting Personal Data in a Globalized Digital Economy The General Data Protection Regulation (GDPR)  and the EU-US Privacy Shield were both designed to protect the privacy of personal data of European Union (EU) citizens. However, the...

Read More

The EU-U.S. and Swiss-U.S. Privacy Shield Frameworks were developed by the U.S. Department of Commerce in consultation with the European Commission and Swiss Government, and with industry and other stakeholders, to provide companies on both sides of the Atlantic with a valid legal mechanism to comply with data protection requirements when transferring personal data from the European Union (EU) and Switzerland to the United States in support of transatlantic commerce.

The CCPA gives California consumers the right to know what personal information is being collected about them, the right to request that their personal information be deleted, and the right to request that their personal information not be sold.

The law applies to for-profit businesses that collect personal information from California consumers and meet certain thresholds for annual revenue, number of consumers, or amount of personal information collected. The CCPA also requires businesses to provide certain disclosures to California consumers about their data collection practices.

The General Data Protection Regulation is a series of laws that were approved by the EU Parliament in 2016. They came into affect on May 25th 2018.

The EU’s General Data Protection Regulation (GDPR) is an initiative by the EU to bring data protection legislation into line with new ways that data is now used.

The new regulations give users great control over their data, including the ability to export it, withdraw consent and request access to it.

It also makes data protection rules more or less identical throughout the EU, allowing for the easier transfer of data through out the European Union.

It affects any company that does business with Europe, whether they are based in the EU or not.

It serves as a leading regulatory model for other data protection authorities throughout the world.

Privacy and Trust News

Guidance, U.S Privacy

Iowa Enacts Data Privacy Law

Iowa has recently become the sixth state in the United States to pass a comprehensive data privacy law. The law, which was signed by Governor Kim Reynolds (R) on Tuesday, aims to empower consumers to have more control over safeguarding their personal data. The Iowa...

Read More

GDPR, Guidance

GDPR Regulations

Understanding the Requirements In 2018, the General Data Protection Regulation (GDPR) came into effect, marking a significant milestone in data privacy regulation. This regulation aimed to provide individuals with more control over their personal data and how it is...

Read More

Guidance, PIPEDA

PIPEDA and its Principles

The Personal Information Protection and Electronic Documents Act (PIPEDA) lays down the foundation for collecting, using, and disclosing personal information while granting individuals the power to control how their information is handled in the private sector....

Read More

Helping your business exceed the compliance standard.

Our team of experienced privacy attorneys & certified privacy professionals have a proven track record of delivering privacy frameworks and data privacy solutions, tailored to your business needs.