CCPA, NTA, DPA, GDPR, WTF?

While the General Data Protection Regulation (GDPR) in the EU has been in place for a few years now, other countries and regions have adopted their own version of enhanced privacy legislation to keep up with the pace of change. 

One such region is California. The California Consumer Protection Act (CCPA), is modeled after the GDPR in many respects, but there are also some key differences in how data is collected and the consequences companies can potentially face when breaches occur. The CCPA came into effect at the start of 2020, but the enforcement phase actually begins on July 1, 2020.  In this blog, we'll explore how to future-proof your communication security when data privacy requirements are evolving.

Even if your company isn’t located in California, or anywhere else in the USA, if you’re doing business or have customers there, you need to be aware of how this legislation can impact you. The same applies to companies outside Europe with the GDPR; you don’t have to be based there to be directly impacted with the legislation if you collect data on EU residents. We’ll explain more on this in the next blog post with a helpful infographic. 

New data protection legislation is coming
California is the first US state to enact a new data protection policy, but more states are poised to soon follow suit. Aside from countries or regional jurisdictions introducing their own flavor of data protection, some countries, such as the Netherlands, continue to expand privacy standards alongside existing GDPR regulations.

This was done recently in the form of a new data protection standard called NTA 7516, impacting healthcare and municipal institutions as well as professional practices that need to email data or transfer files securely. This standard outlines a number of measures to ensure privacy sensitive health related information can be safely exchanged digitally.

The NTA 7516 only applies to the Netherlands, but more countries will eventually introduce new data protection requirements. Some will surely be industry specific, such as for the healthcare or legal sectors, and will establish new requirements on how sensitive information is safeguarded.

Choosing the right secure communication platform now to keep up with these data protection changes, can spare you headaches later. We’ll explain.

How to keep up with data protection legislation changes
The below graphic from Freedom House gives a snapshot of the types of privacy legislation being proposed worldwide. As you can see, it’s more than a handful of countries and could have massive potential business implications in the years to come.

DataProtection_worldwide1But let’s face it. You can’t have a separate communication solution to manage the wide range of compliance requirements in each market or country. Well, you could, but it wouldn’t be practical (or economical).

Choosing a secure communication platform with a track record of keeping up with industry changes will give you more confidence that your organization is able to fully comply with current as well as future regulations when they arise.

Future-proof security solutions can simplify your life
ZIVVER, a European scaleup company for secure communications, was already helping organizations of all sizes to be GDPR compliant before the legislation came into effect in May, 2018.

Since then, they have become a market leader and have further developed their smart technology platform to help thousands of companies comply with additional privacy legislation, such as NTA 7516 in the Netherlands. In fact, ZIVVER was the first secure communication provider to fulfill the certification requirements set out by NEN, the governing body of the NTA legislation.

When the UK eventually implements another data protection standard to succeed the GDPR, such as a modified version of the Data Protection Act (DPA), a smart and agile platform such as ZIVVER can ensure your business is able to properly comply from the start.

You can read more about ZIVVER’s secure communication platform here.

Still struggling with GDPR compliance? We’re here to help.

It’s hard to think about potential future requirements that may impact your business if you’re struggling to comply with current legislation, such as the GDPR. 
If that sounds like you, don’t worry -- you’re not alone! Some studies have shown nearly half of organizations in markets like the UK are not yet fully GDPR compliant, but the time to remedy that is now.

Download ZIVVER’s free easy-to-follow GDPR Checklist using the link below, and you can be on your way to properly securing your communications in just a few clicks.

Download our GDPR checklist

RELATED
Comfort Safe Communications

Zivver Listed as a Representative Vendor in Gartner's 2020 Market Guide for Email Security

LONDON and AMSTERDAM – Zivver, a leading secure digital communication provider, announced today that it has been identified as a Representative Vendor for Email Data Protection Specialists in Gartner's 2020 Market Guide for Email Security. […]

Read more
Rick Goud

My promotion from CEO to CIO

I am proud to announce that I have handed over the CEO reins of Zivver to Wouter Klinkhamer. In my new position as CIO I will focus more on where my passion and strength lies: innovation and translating problems into solutions with technology. The new Zivver Meet service for safe video calling is a good example of how quickly we can innovate and is therefore a nice […]

Read more
London bridge lights moving quickly

How to safeguard data and comply with the GDPR and similar legislation

With the GDPR in effect for some time now, organizations must ensure that their products, services and processes are GDPR compliant as well. The optimal way to do this with current and future business initiatives is by establishing a culture of privacy by design and default in your organization, as well as perform a privacy impact assessment (PIA) as needed. We like to […]

Read more
London bridge lights moving quickly

How to safeguard data and comply with the GDPR and similar legislation

With the GDPR in effect for some time now, organizations must ensure that their products, services and processes are GDPR compliant as well. The optimal way to do this with current and future business initiatives is by establishing a culture of privacy by design and default in your organization, as well as perform a privacy impact assessment (PIA) as needed. We like to […]

Read more
Hand_dominos_traffic-light

5 top GDPR compliance challenges, and what you can do about them

If your organization is struggling to comply with data protection regulations such as the GDPR, you can take some comfort in knowing you’re definitely not alone. Some studies have shown close to half of companies in many countries are not fully compliant with their national data protection requirements. But what are the compliance challenges these companies are […]

Read more
EU_California_flag

General Data Protection Regulation (GDPR) vs California Consumer Privacy Act (CCPA)

In a recent blog post we explained how the California Consumer Privacy Act (CCPA) went into effect on the 1st of January, 2020, after it was signed into law in 2018. This consumer protection legislation, the most robust yet in the United States, was essentially modelled after the General Data Protection Regulation (GDPR) in the European Union, which went into effect in […]

Read more