Organizations that have gone through the grind to comply with the EU General Data Protection Regulation may have advantages over those that have not as preparations for the California Consumer Privacy Act head into the home stretch. For those who are not GDPR veterans, one area that may give them a headache is determining whether a vendor is a service provider or a third party. Mercer Chief Privacy Officer Jo Davaris, CIPP/US, and Perkins Coie Partner Dominique Shelton Leipzig, CIPP/US, discussed how organizations can discover the distinction at a workshop at the IAPP Privacy. Security. Risk. conference. IAPP Associate Editor Ryan Chiavetta, CIPP/US, has the details in a piece for The Privacy Advisor.
If you want to comment on this post, you need to login.