I’m going to guess that if you’re reading this blog, you’re likely already aware that under current US law, there is no comprehensive Internet privacy protection scheme working to place limits on the gathering and use of Americans’ personal data. Most of the Western nations have such statutes in place (including all the states of the EU – and even Canada!), and I’ve little doubt that’s a boon to compliance officers mournfully tasked with keeping current on International Policy and Regulatory concerns. But apart from zeroing out your vacation hours before each legislative session, what can be done to ensure that your company’s Internet privacy policies are going to continue to fall in line with the letter of the law?
Here are a few tips to make sure you don’t bloody your nose:
There you have it. Subject to the above, you generally have freedom as to how you collect, store, buy, sell, use, pillage and exploit an individual’s personal data. As with any topic posted here, these thoughts reflect a snapshot in time and you absolutely must continue to keep your ear to the ground for new legal developments at both the state and federal level. If you’ve ever wondered why “Compliance Officer" is a full-time job, there’s your answer.