Welcome to Mine PrivacyOps's newsletter! See the analysis, discussions, and insight we have in store for you on a monthly basis
View in browser

Data Privacy Happenings

**Hello and welcome to Mine PrivacyOps' brand new monthly newsletter, The Privacy Mindset! đź‘‹

 

We've held off on unveiling a newsletter until we knew we could provide something different, something of value to readers. We're not here to aggregate news stories or simply plug our own blog.

 

The Privacy Mindset is going to feature monthly insights into what's happening within Data Privacy, how our product solves industry challenges, a key section of data regulations to consider, and a custom Q&A with one of our founders. ** 

 

With two new state-level data privacy laws in the U.S., framework for renewed data flows between the EU and U.S., and data regulations popping up in nearly every corner of the world, 2023 is set to be a busy year for the data privacy industry. 

 

We were reminded of that within days of changing calendars, as Meta was hit with a fine for violating the GDPR, a frequent but never dull occurrence. Looking deeper into Meta’s never-ending legal battles with GDPR enforcement, we can see that compliance is only the obvious and far from the key result of good (or bad) data privacy. 

 

Public perception matters so much more. Do people trust your company? Are they happy to do business with you? Are you willing to exploit consumers for profit?  

 

We are likely headed for a year with record levels of data regulation enforcement, and as both SaaS usage and the amount of regulations themselves continue to rise, companies now more than ever need to protect user data and be transparent about how they use it, lest they be left behind in the next iteration of the internet.

Product Spotlight

We root our product in user-friendliness, so once an organization has gone through data source discovery and classification, we lay out the next steps in data governance. What are they?

 

Actionable insights from our Business Impact Assessment feature. 

 

Our tri-colored matrix design makes it visually clear which systems are essential and which are not or might be at risk, with different matrices for: 

  • Usage vs. employees
  • Employees vs. data sensitivity
  • Employees vs. cyber posture
  • Cyber posture vs. data sensitivity 

Our Business Impact Assessment is great for cleaning up your company’s SaaS usage or making sure an important integration has good cyber posture in preparation for impact assessments and RoPA reports.

Regulation Focus

CPRA section 1798.135(c)(5):

For consumers under 16 years of age who do not consent to the sale or sharing of their personal information, refrain from selling or sharing the personal information of the consumer under 16 years of age and wait for at least 12 months before requesting the consumer’s consent again, or as authorized by regulations or until the consumer attains 16 years of age.

 

One of the main fixes privacy advocates in California wanted to institute with the transition from the CCPA to the CPRA was to better protect children’s data. The GDPR has a similar implementation, setting the general age of consent at 16, and otherwise requiring permission from a guardian to process a child’s data. 

 

While the U.S. has long had COPPA in place federally to protect children’s privacy online, it is not a comprehensive solution and before the FTC fined Fortnite creators Epic Games in December over COPPA violations, the bill hadn’t seen consistent enforcement.

 

With that recent activity and section 1798.135(c)(5) of the CPRA, it seems a renewed push for children’s data privacy is in line. This is especially true given any CPRA fines involving a minor’s data are automatically $7,500 per individual impacted, the highest figure in the regulation.

Founder's Corner 

CPO & co-founder Kobi Nissan

Q: Considering Mine's unique approach to data discovery and classification, how sensitive is Mine’s data scanning, e.g. how is the false positive rate on alerts?

 

A: Our Smart Data Sampling technology provides probability to the results of the complete data to be scanned. We then drill down and get the context around the results.

Upcoming Events

As part of our company-wide effort to celebrate Data Privacy Day (Jan 28) right, our CEO & co-founder Gal Ringel will take part in the GRC's Last Thursday in Privacy event on a panel discussing "Closing the Data Divide: the future of Data Privacy is People-Centric" at 4:30 PM GMT on Jan 26.

 

We're always around

to talk data privacy.

Get in touch at press@saymine.com 

flybook

How did you like this month's issue?

Let us know

"MineOS" (Saymine Technologies Inc), One Marina Park Drive, Suite 1100, Boston, MA 02210, United States

Unsubscribe Manage preferences