Thousands of information management professionals receive our data management best practices and tips each month — via the First San Francisco Partners newsletter.
They also get news on industry events (often with discount information) and excerpts from the FSFP blog, where we share perspectives on topics like data governance, data quality, data catalogs, women in the information management industry, the California Consumer Privacy Act (CCPA) and more. Join our industry pros list now.
March 2021 Newsletter
Here are highlights from our latest issue.
Virginia’s Consumer Data Protection Act is Tip of the Data Privacy Iceberg
Earlier this month, Virginia became the latest state to enact comprehensive privacy legislation with the passing of its Consumer Data Protection Act (CDPA).
This law will go into effect on January 1, 2023, and will impact for-profit entities “who conduct business in the commonwealth of Virginia or produce products or services that are targeted to residents of the Commonwealth” and meet either of the thresholds below within a calendar year:
- Control or process the personal data of at least 100,000 consumers or
- Control or process the personal data of at least 25,000 consumers and derive at least 50% of its gross revenue from the sale of personal data
Similar to the California Consumer Privacy Act, or CCPA, the CDPA will grant Virginia residents the rights to access, correct, delete, obtain a copy of, and opt out of the sale of their personal information. It also allows residents the right to opt in to sensitive data processing. It differs from the CCPA in other ways and borrows from the EU’s landmark GDPR provisions. Key differences between CDPA and CCPA include the CDPA’s use of “controller” and “processor” terminology similar to GDPR. In terms of consumer rights, CDPA allows consumers to opt in to processing of sensitive information and opt out of the processing of personal data for targeted advertising, while the CCPA does not. (Learn more about Virginia’s detailed provisions, exemptions and a comprehensive overview of the CDPA.)
More than a dozen states, including New York, Washington, Utah and Oklahoma, have either introduced new privacy legislation or have privacy bills in committee. Now more than ever, organizations need to know what sensitive data they have, where it resides and why they have it. Ultimately, the governance of data, processes, people and technology will be at the heart of meeting any data privacy or sensitive data protection challenge and most importantly — earning and maintaining consumer trust in this data-driven world.
How is your organization adapting to meet the evolving data privacy landscape? Have you built an agile approach by leveraging data governance as the foundation?
See you next month.
Kelle O’Neal
Metrics That Matter: Impact and Progress
An organization’s new technology roll-out is typically the culmination of many months or even years of incredibly hard work and a significant financial spend. To yield a strong ROI on the technology, adoption is everything.
- Impact because it answers the question, how is the technology improving the business?
- Progress because it can show how the technology is moving the organization forward toward success.
Planning to Attend EDW?
The 25th annual Enterprise Data World will be here soon. This year’s program, hosted live online April 18 through April 23, will feature five keynotes, 20 tutorials and 90 conference sessions.
DATAVERSITY is offering a free pass to all EDW keynote sessions and exhibit events. View EDW’s registration information for the fees associated with the tutorials and conference sessions.
Two of our team members are participating in EDW:
- On April 20, Becky Lyons will facilitate the Future-Proof Your Data Catalog with Enterprise Adoption tutorial.
- On April 21, Kelle O’Neal is presenting a conference session, Data Governance as a Service: Rationale, Roles and Resources.
Data Education Month Discount
DATAVERSITY’s 2021 Data Education Month event will come to a close on Wednesday, March 31.