Platform
- The Osano Platform Overview
  
  Get an overview of the simple, all-in-one data privacy platform
- Features & Integrations
  
  Key Features & Integrations
Solutions
- By Regulation
- CPRA
  
  Discover how Osano supports CPRA compliance
- CCPA
  
  Learn about the CCPA and how Osano can help
- GDPR
  
  Achieve compliance with one of the world’s most comprehensive data privacy laws
- By Organization Type
- Start-Up
  
  Don’t let data privacy compliance get in the way of growth
- Mid-Sized
  
  Preserve your competitive edge
- Enterprise
  
  Manage data privacy at scale
- By Use Case
- Consent Management
  
  Manage consent without the complexity
- DSAR Automation
  
  Never miss a DSAR deadline again
- Privacy Program Management
  
  Build and grow an end-to-end privacy program
- Vendor Risk Management
  
  Regain insight and control over your customers’ data
Resources
- Resources
  
  Key resources on all things data privacy
- Articles
  
  Expert insights on all things privacy
- Resource Center
  
  Key resources to further your data privacy education
- Customer Stories
  
  Meet some of the 5,000+ leaders using Osano to transform their privacy programs
- U.S. Data Privacy Laws
  
  A guide to data privacy in the U.S.
- Product Updates
  
  What's the latest from Osano?
- Become a Privacy Insider
  
  Data privacy is complex but you're not alone
- The Newsletter
  
  Join our weekly newsletter with over 35,000 subscribers
- The Podcast
  
  Global experts share insights and compelling personal stories about the critical importance of data privacy
- The Book
  
  Osano CEO, Arlo Gilbert, covers the history of data privacy and how companies can start a privacy program
- Events
  
  Upcoming webinars and in-person events designed for privacy professionals
Latest Blog post

Ch-Ch-Ch-Changes

Hello all, and thanks for reading today.
Read Now
Company
- About Us
  
  The Osano story
- Careers
  
  Become an Osanian and help us build the future of privacy!
- Contact
  
  We’re eager to hear from you
- Our Pledge
  
  No fines, no penalties
- Data Licensing
  
  Add Osano data privacy ratings and recommendations to your application
- Osano Swag Store
  
  Increase Trust. Stay Compliant. Get Cool Swag.
- Press & Media
  
  Inquiries and Osano in the news
- Partners & Resellers
  
  Interested in partnering with us?
Pricing
Sign In Book a Demo

Privacy Insider Newsletter: June 8

Osano Staff

Updated: June 9, 2021

Published: June 8, 2021

Sign up for our newsletter

Welcome to Privacy Insider, a round-up of the week's most important stories.

While there wasn’t a bevy of privacy news since we last met a week ago, there were two significant developments. First, the European Commission issued its new standard contractual clauses on Friday. Those are a big deal for companies looking to transfer data out of the EU legally. Some of the changes in what must be included in a standard contractual clause stem from the Schrems II case, which invalidated the Privacy Shield agreement. Part of Europeans’ concerns about the safe transfer of data from the EU to the U.S. is specifically related to law enforcement agencies’ access. If your company relies on standard contractual clauses now or in the future, you’ll want to know about the critical changes. The first story below outlines some of those.

Second, today, Colorado passed its privacy law. The bill needs a signature from the state’s governor, but he isn’t expected to veto it. Here’s what you need to know about the bill:

It looks similar to California’s new privacy law, the California Privacy Rights Act (CPRA).
It includes a Global Privacy Control provision, which would allow Colorado residents to opt out of personal data processing.
It requires consumers to opt in before companies can collect “sensitive” personal data.
It allows the Colorado attorney general to enforce the law and to start issuing guidance in 2025.
It requires data protection assessments where data processing could present a heightened risk to consumers.
It does not include de-identified or pseudonymous data within the definition of “personal data."
It does not include a private right of action as a consumer remedy, unlike the CPRA.

The bill passed the Colorado Senate just a few hours ago, so lawyers and pundits are still gathering their thoughts on its implications. I’ll have more extensive coverage of what the law requires at Osano.com tomorrow, but for now, see The Denver Post’s coverage at story #2 below.

Enjoy reading, and I'll see you next week!

European Commission issues new standard contractual clauses

Last Friday, the European Commission finally published its new terms for standard contractual clauses (SCCs). Ever since the Commission canceled the Privacy Shield as a data-transfer mechanism, companies transferring data out of the EU and into another jurisdiction have nervously waited to hear what kind of requirements they’d need to include in contracts with data importers or subprocessors. Here is a look at some of the significant changes from what used to exist to now.
Read Story

2. Colorado passes comprehensive privacy law

On Tuesday, June 8, Colorado’s Senate approved a bill giving state residents rights over their data. The Colorado Privacy Act, or SB21-190, now goes to the governor’s desk for signature. The law goes into effect in July 2023 and would allow Coloradans to use a global privacy control browser setting to opt-out of data collection on all websites, The Denver Post reports.
Read Story

3. Apple’s push to make privacy its competitive advantage

Apple announced new versions of its operating systems this week, “which showed that the company’s focus on privacy has taken a new turn,” CNBC reports. While Apple has made strides to come across as the most privacy-focused tech company, its latest app and feature unveiling at the World Wide Developers Conference indicated that “Apple’s privacy strategy is now part of its products.”
Read Story

4. TikTok’s change to US privacy policy allows it to collect biometric data

TikTok made changes to its U.S. privacy policy to notify users that, in the future, it might collect their biometric information. But the company hasn’t responded to media questions about the changed policy, which says TikTok may collect users’ faceprints and voiceprints. When The Verge inquired, the company said, “As part of our ongoing commitment to transparency, we recently updated our Privacy Policy to provide more clarity on the information we collect,” The Verge reports.
Read Story

Schedule a demo of Osano today

Privacy Policy Checklist

Are you in the process of refreshing your current privacy policy or building a whole new one? Are you scratching your head over what to include? Use this interactive checklist to guide you.

Download Now

Osano Staff

Osano Staff is pseudonym used by team members when authorship may not be relevant. Osanians are a diverse team of free thinkers who enjoy working as part of a distributed team with the common goal of working to make a more transparent internet.

Blog

Check out some of our latest articles

Osano is used by the world's most innovative and forward-thinking companies to easily manage and monitor their privacy compliance.

View All Blog Posts View All Resources

Simplify Data Privacy Compliance

With Osano, building, managing, and scaling your privacy program becomes simple. Schedule a demo or try a free 30-day trial today.

Book a Demo

The Osano Platform Overview

Cookie Consent

Subject Rights Management

Assessments

Unified Consent & Preference Hub

Data Mapping

Vendor Privacy Risk Management

Features & Integrations

Privacy Templates

GDPR Representative

Consult Privacy Team

Regulatory Guidance

Integrations

CPRA

CCPA

GDPR

Start-Up

Mid-Sized

Enterprise

Consent Management

DSAR Automation

Privacy Program Management

Vendor Risk Management

Articles

Resource Center

Customer Stories

U.S. Data Privacy Laws

Product Updates

The Newsletter

The Podcast

The Book

Events

Ch-Ch-Ch-Changes

About Us

Careers

Contact

Our Pledge

Data Licensing

Osano Swag Store

Press & Media

Partners & Resellers

Privacy Insider Newsletter: June 8

Osano Staff

In this article

Sign up for our newsletter

Share this article

Privacy Policy Checklist

Osano Staff

Osano Staff

Share this article

Blog

Check out some of our latest articles

Ch-Ch-Ch-Changes

What a Week. Lots to Unpack.

No Data Protections for Employees?

Simplify Data Privacy Compliance