Privacy laws

The South African population recently gained rights over their personal information. Enforcement of South Africa’s Protection of Personal Information Act (POPIA) began on July 1, 2021, and the law was modeled closely after the European Union’s GDPR. It’s been a long-time coming, as variations of this law have been in the works for almost 20 years.

The Turkish Personal Data Protection Law No. 6698, also known as the KVKK, came onto the books in April of 2016, shortly before the European Union’s GDPR.

Both laws were tailored to their region’s court systems and maintain similar objectives. They share some distinct similarities and differences in the way that they are structured, and companies that serve customers in both regions are required to follow both.

First enacted in 2001, the Personal Information Protection and Electronic Documents Act (PIPEDA) served as an important first step in safeguarding the privacy rights of Canadians. The purpose of PIPEDA is to regulate how businesses collect, utilize, and share personal information, primarily focusing on commercial activities. Two decades on, this cornerstone legislation is now seen as having ”more bark than bite.” That may all change in 2021.

Now that Britain has officially exited the European Union (on paper, anyway), website owners are wondering how Brexit will affect the way they handle cookie consents from website visitors in the EU and UK. While some things have changed, much stays the same — until June of 2021, that is. Currently, there is more cross-border bureaucracy, and much of that is playing out online in how businesses transact with each other.

Following a series of delays, Brazil's LGPD is now in effect. Recently, President Jair Bolsonaro issued a provisional measure that would have postponed the effective date of the LGPD until May 3, 2021. In an unexpected move, the Senate rejected the president’s provisional measure. Now the LGPD will become law — without ANPD in place — when the bill reaches the president's desk, sometime within the next two weeks.

While Europe's replacement for 2002's “Cookie Directive” has yet to pass through the European Parliament, it’s only a matter of time before the ePR (ePrivacy Regulation) becomes law. So, what does this legislation and cookie consent mean for your business? Your online communications? And, what effect will this law have on organizations and individuals outside the EU?

Starting January 1st, 2020, businesses transacting with California residents need to ensure their data collection practices comply with the California Consumer Privacy Act (CCPA). You may be asking, “What does the CCPA mean for my business?” And, more importantly, “How do I make sure that my communications and digital interactions with individuals in California are legal?” Cookie Script, the company behind the popular cookie privacy compliance tool, has put together this helpful guide that will answer everything you need to know about the CCPA and how it will impact your business.

In Europe, years of preparation and speculation came to a head, when the General Data Protection Regulation (GDPR) became law in May of 2018. It’s now been on the books for a few years.

GDPR replaced outdated data protection regulation that was nearly 20 years old. The E.U. deemed it necessary to update and modernize regulations so that they fit the online world, where people become increasingly likely to share personal information more freely than ever before.

On the 3rd of June 2014, Italian Data Protection Authority (DPA) has published official instructions for websites on how users should be informed about cookie usage (also known as "Cookie Law"). Deadline for implementation of those instructions is 12 month, which is 3rd of June 2015. Below you will find a summary of those instructions and a checklist to make sure your website is compliant with Italian Cookie Law.

Showing cookie pop-up message is just part of the deal. Each website must also have a Cookie Policy page in order to comply with EU Cookie Directive.