Perhaps the most significant legal developments for information security professionals in 2021 came not in the form of traditional "risk-based" data protection laws but instead in the passage of two "rights based" ones. Both the Virginia Consumer Data Protection Act and the Colorado Privacy Act were significant developments, granting individuals the right to control how others use their personal data, as well as mandating numerous InfoSec requirements. Some 25 states introduced comprehensive privacy legislation in 2021, and it's very likely those same bills will reappear in this year's legislative sessions.
Meanwhile, the California Privacy Rights Act of 2020 (CPRA) is expected to consume major corporate resources in 2022 as enterprises come to grips with new types of personal data in scope, additional contractual requirements when selling personal information to third parties, and additional protections for the personal information of children. There's also the creation of a "privacy police" agency, the California Privacy Protection Agency, which carries significant regulatory power.
Join our panel of industry experts as we discuss the biggest privacy events of 2021 and what may be in store for 2022.
Takeaways will include:
• InfoSec mandates of upcoming data privacy laws and regulations
• The biggest data privacy challenges for the year ahead
• Expert perspectives on meeting legal requirements
Attendees are eligible to receive 1 CPE credit.