Hello all, and thanks for reading today.
As is appropriate for the year’s end, it’s a period of change in the world of data privacy.
Data privacy is, of course, always evolving, but it seems like more significant shifts are taking place.
Change can be scary, but staying informed is your best defense against the unknown. Keep your eyes on this newsletter, the Osano podcast, our webinars, and other resources—you'll weather all the changes coming in 2025 just fine.
Best,
Arlo
Ever feel perplexed by what separates data privacy from data security? We break down the fundamental differences between these related concepts here.
How can privacy prove its value to the business and be seen as more than "just" a cost center? Find out how to demonstrate ROI and gain allies in this webinar.
On January five state privacy laws are going into effect: Four of them on January 1. 2025 is going to be a busy year for privacy compliance. Are you ready? Get ready at this preview webinar, where Osano and our guests from Husch Blackwell will tell you everything you need to know.
December 5th | Save your seat
Executive Director Ashkan Soltani announced he will depart from the California Privacy Protection Agency (CPPA) in January 2025. Currently, it is unclear who will be replacing Soltani as the head of the CPPA.
Recently, the CPPA Board hosted its public bimonthly meeting, where it adopted new CCPA regulations applicable to data brokers. These regulations include defining relevant terms, explaining procedures for registration changes, and requiring data brokers to disclose specific information about their exempt data collection practices. The Board also initiated the formal rulemaking process for proposed regulations for insurance, cybersecurity audits, risk, assessments and automated decision-making technologies.
Meta is again reimagining its plans for serving personalized advertising in the EU. The latest change in direction stems from ongoing scrutiny from EU regulators over whether the proposed consent-or-pay advertising scheme for EU-based Facebook and Instagram users violates the EU General Data Protection Regulation and the Digital Markets Act. The new plan incorporates a low-cost, ad-free subscription as well as a free model that serves “less personalized ads” with consent.
The Online Safety Act (OSA) applies to most online services with certain UK links, e.g., targeting UK users. A wide range of businesses clearly fall within this category–such as consumer file or video sharing sites, forums, chat facilities, dating services, and online instant messaging services. The act goes into effect over the course of several phases, ranging from October 2024 to April 2026.
Though nothing is set in stone, the transition of power in Washington to Republican-controlled Presidency, Senate, and House will likely impact digital governance and technology policy. This article unpacks what we can expect.
There's more to explore:
We go deeper into additional privacy topics with incredible guests monthly. Available on Spotify or Apple.
The book inspired by this newsletter: Osano CEO, Arlo Gilbert, covers the history of data privacy and how companies can start building a privacy program from the ground up. More details here.
If you’re interested in working at Osano, check out our Careers page!