Navigating Compliance: GDPR & SOC 2 Compared

framework, regulation, compliance, gdpr, soc 2

What is SOC 2? What are the similarities and differences between it and the GDPR? And does your organisation need to ensure it is compliant with both? The General Data Protection Regulation (GDPR) isn’t the only data protection standard in town. You’ll probably be aware that there are others — some mandatory and others voluntary. […]

Read More… from Navigating Compliance: GDPR & SOC 2 Compared

CCPA and GDPR: Similarities and Differences for US Businesses

What are the similarities between the CCPA and GDPR? What are the differences? And how can you be sure your organisation is compliant with both? 2023 was the year the US got serious about data security. Inspired by Europe’s General Data Protection Regulation (GDPR), 2023 saw Colorado, Connecticut, Utah and Virginia enact new data protection […]

Read More… from CCPA and GDPR: Similarities and Differences for US Businesses

US Businesses’ Pitfalls in Navigating GDPR & Electronic Marketing

The US has traditionally adopted a relatively low key and hands-off approach to data protection. Increasingly, though, that’s changing as more states enact new measures, often based on the EU’s General Data Protection Regulation (GDPR). In our experience, however, many US businesses are yet to get up to speed with the changing state of legislation. […]

Read More… from US Businesses’ Pitfalls in Navigating GDPR & Electronic Marketing

Navigating GDPR for US Businesses: Common Questions and Expert Answers

The EU’s General Data Protection (GDPR) may be a European law, but if your business handles the data of EU residents, it affects you. That’s something that tends to raise questions among our US clients, so in this post we’ve put together some of the most frequent. We provides the answers. Does GDPR apply to […]

Read More… from Navigating GDPR for US Businesses: Common Questions and Expert Answers

GDPR in the USA in 2023: Navigating the Regulation

AI. GDPR. Data transfers. Whatever angle you approach data protection from, 2023 has thrown up plenty for US businesses to absorb and adopt. We look at the story so far this year and ask what the implications are for your company. Data protection expectations are changing. Driven by legal, security and technological considerations – and […]

Read More… from GDPR in the USA in 2023: Navigating the Regulation

Don’t Get Caught Out: How US Companies Can Comply with the GDPR after the Adequacy decision from the EU

In the recent blog Finally Unlocking Transatlantic Data Flow: How the Adequacy Decision Impacts US and EU Companies we explain how this EU decision unlocked the transatlantic personal data flow from EEA and in near future UK and Switzerland to the US. But what does this unlocked flow mean for US companies that receive personal […]

Read More… from Don’t Get Caught Out: How US Companies Can Comply with the GDPR after the Adequacy decision from the EU

The Essential Guide to SMS Marketing Compliance in the US

For SMS marketing practices to remain ethical and legal, compliance with a complex set of regulations is essential. There’s a lot to know about text messaging compliance, shedding light on the key regulations and requirements (especially if your target is US Citizen Audience). These regulations, serve as the compass guiding marketers towards a principled course […]

Read More… from The Essential Guide to SMS Marketing Compliance in the US

Finally Unlocking Transatlantic Data Flow: How the Adequacy Decision Impacts US and EU Companies

What is the adequacy decision for the EU-US Data Privacy Framework? An adequacy decision made by the European Commission under the General Data Protection Regulation (GDPR) determines whether a third country provides a level of data protection that is essentially equivalent to that guaranteed within the European Union.  The decision is based on a comprehensive […]

Read More… from Finally Unlocking Transatlantic Data Flow: How the Adequacy Decision Impacts US and EU Companies

How to Choose the Right GDPR Rep – A Guide for US Businesses

You understand the ‘what’ and ‘why’ of the EU GDPR. But how do you go about choosing the right GDPR rep for your business? Find out as our GDPR team explains. You know all about the General Data Protection Regulation (GDPR). You know its impact on your business. You know how it shapes the way […]

Read More… from How to Choose the Right GDPR Rep – A Guide for US Businesses

Demystifying GDPR Article 27: A Guide for US Businesses

Did you know that if your US business trades with the EU and processes EU citizens’ data, you’ll need to appoint a GDPR Article 27 representative? The General Data Protection Regulation (GDPR) has had a major impact on how European Union (EU) businesses handle personal data, but that impact hasn’t been limited purely to the […]

Read More… from Demystifying GDPR Article 27: A Guide for US Businesses