The data privacy landscape changes on a consistent basis, and it can be hard to keep track of what’s next. But proactivity is the key to adapting to trends, preventing data breaches, complying with regulations, preventing data loss, and optimizing the way your business leverages its data to drive decision-making and performance.
We’ve created this timeline to help you keep track of upcoming changes that you should be aware of. Share it with your friends! Share it with your stakeholders! We want to help everyone be as prepared as possible for the near-future.
Next year kicks off with a bang, as the states of California and Virginia have new privacy laws beginning enforcement once the New Year’s ball drops. These laws are the California Consumer Privacy Act (CCPA) and the Virginia Consumer Data Protection Act (VCDPA).
Changes to disclosure and consent requirements exist in the California law, and the Virginia law is entirely new. We recommend beginning compliance implementation as soon as possible to avoid missing the enforcement deadline.
Notability, CCPA introduces the concept of Risk and Cybersecurity Assessments to compliance activities, which will be new processes for many of the businesses to which the California law applies.
As summer rolls around and the kids are enjoying their vacation, the second wave of data privacy regulations enter into force across the country. The States of Connecticut and Colorado each have their own new data privacy laws that go into effect in July, which will add compliance requirements to businesses which meet the applicability thresholds. The technical name for the Connecticut law is a mouthful: “An Act Concerning Personal Data Privacy and Online Monitoring,” AKA the Connecticut Privacy Act (CTDPA). The Colorado law is, simply, the Colorado Privacy Act (CPA).
We advise starting implementation planning for these changes no later than January 2023, as efforts to ensure compliance as compliance efforts can take a surprisingly long time.
As you deck the halls, consider compliance activities for Utah’s Data Privacy law, the Utah Consumer Privacy Act (UCPA), which comes into effect at the end of the year. Plan for these changes no later than August 2023.
2024: Learn how to thrive in the cookieless future with privacy services and a first-party data plan
Privacy changes don’t stop there, however. As the year rolls over to 2024, marketers need to account for the planned phase out of third-party cookies from Google Chrome slated for the second half of 2024. Here is the Privacy Sandbox timeline Google keeps updated to reflect when they expect new privacy-preserving APIs and other technologies to come online.
We recommend you start planning for cookies to phase out now, as efforts to mitigate the impact to a company’s marketing program can take upwards of a year to fully deploy and become operational at scale.
Search Discovery offers a full suite of data privacy services and solutions
Be it one of the data privacy laws above, or the impact of browser privacy protections, Search Discovery stands ready to assist in the identification of data privacy trends and regulations may apply to your specific business cases. We can help you develop and execute a roadmap that ensures you reach your compliance goals, and we can help you configure and integrate your platforms for compliance.
Read some more of our recent privacy blog posts:
- CCPA Enforcement in the News
- Data Security vs. Data Privacy: What’s the Difference for Your Business
- Power Your First-Party Data Strategy with Loyalty Program Optimization