ADMT & Employment
Hello all, and thanks for reading today.
Read NowGet an overview of the simple, all-in-one data privacy platform
Manage consent for data privacy laws in 50+ countries
Streamline and automate the DSAR workflow
Efficiently manage assessment workflows using custom or pre-built templates
Streamline consent, utilize non-cookie data, and enhance customer trust
Automate and visualize data store discovery and classification
Ensure your customers’ data is in good hands
Key Features & Integrations
Discover how Osano supports CPRA compliance
Learn about the CCPA and how Osano can help
Achieve compliance with one of the world’s most comprehensive data privacy laws
Key resources on all things data privacy
Expert insights on all things privacy
Key resources to further your data privacy education
Meet some of the 5,000+ leaders using Osano to transform their privacy programs
A guide to data privacy in the U.S.
What's the latest from Osano?
Data privacy is complex but you're not alone
Join our weekly newsletter with over 35,000 subscribers
Global experts share insights and compelling personal stories about the critical importance of data privacy
Osano CEO, Arlo Gilbert, covers the history of data privacy and how companies can start a privacy program
Upcoming webinars and in-person events designed for privacy professionals
The Osano story
Become an Osanian and help us build the future of privacy!
We’re eager to hear from you
Updated: March 4, 2024
Published: February 29, 2024
Hello all, and happy Thursday!
Big news at Osano! We have a new role for a Senior Privacy Program Manager. This role is perfect for someone who has experience consulting and helping customers build effective, fully-automated privacy processes. If you think you would be a good fit, you can learn more and apply here.
There’s also big news happening in the broader world of data privacy.
Last week, our newsletter’s intro discussed how California regulators were signaling that they intended to ramp up enforcement in 2024. The ink wasn’t even dry before that proved to be the case.In what is the second-ever enforcement action of the California Consumer Privacy Act (CCPA), California Attorney General Rob Bonta has announced his office’s action against DoorDash.
You may remember the Sephora enforcement action, in which the makeup retailer was hit with a $1.2 million penalty. This action features some of the same violations. Specifically, DoorDash was penalized for selling California customers' personal information as part of a marketing cooperative without providing notice or an opportunity to opt out of that sale.
This marketing cooperative allowed participating businesses to contribute their customers’ personal information and, in exchange, enabled the businesses to advertise products to each others’ customers. As a result, DoorDash:
Here’s what AG Bonta had to say in a press release:
“DoorDash’s participation in a marketing cooperative is a sale under the CCPA and violates its customers’ rights under our landmark state privacy law. As my office has stressed time and time again, businesses must disclose when they are selling personal information and offer Californians a way to opt out of that sale. I hope today’s settlement serves as a wakeup call to businesses: The CCPA has been in effect for over four years now, and businesses must comply with this important privacy law. Violations cannot be cured, and my office will hold businesses accountable if they sell data without protecting consumers’ rights.”
Stern stuff! You can find the link to the press release in this week’s privacy stories.
Best,
Arlo
Canada-based University of Waterloo is racing to remove M&M-branded smart vending machines from campus after outraged students discovered the machines were covertly collecting facial-recognition data without their consent.
Protection for minors online continues to top the list of U.S. regulatory and legislative priorities in 2024. So far in 2024, California legislators introduced several bills focused on minors, Congress held hearings and advanced federal legislation protecting minors online, Congress and the Federal Trade Commission (FTC) have signaled a desire to update the Children’s Online Privacy Protection Act (COPPA), and more.
The CPPA recently published draft regulations on the few outstanding concerns in the CPRA, namely risk assessments and automated decision-making technologies. The CPPA will hold a public meeting to discuss these regulations on March 8th.
The FTC will require software provider Avast to pay $16.5 million and prohibit the company from selling or licensing any web browsing data for advertising purposes. The penalty comes after a complaint that Avast unfairly collected consumers’ browsing information through the company’s browser extensions and antivirus software, stored it indefinitely, and sold it without adequate notice and without consumer consent.
California Attorney General Rob Bonta recently announced a settlement with DoorDash, resolving allegations that the company violated the California Consumer Privacy Act (CCPA) and the California Online Privacy Protection Act (CalOPPA). Specifically, an investigation discovered that DoorDash sold customer personal information without providing notice or an opportunity to opt out.
Consumers want and deserve control over their experience with your organization. Consent management is just one half of the coin, though—find out what preference management is, and how it overlaps with consent management in this blog.
If you’re interested in working at Osano, check out our Careers page!
Arlo Gilbert is the CEO & co-founder of Osano. An Austin, Texas native, he has been building software companies for more than 25 years in categories including telecom, payments, procurement, and compliance. In 2005 Arlo invented voice commerce, he has testified before congress on technology issues, and is a frequent speaker on data privacy rights.
Osano is used by the world's most innovative and forward-thinking companies to easily manage and monitor their privacy compliance.
With Osano, building, managing, and scaling your privacy program becomes simple. Schedule a demo or try a free 30-day trial today.