OneTrust DataGuidance is pleased to present the first issue of Data Protection Leader for 2021. As always, this issue includes expert insights and interviews with some of the top voices in data protection including the third installment on the Department of Defense’s CMMC from Alex Sharpe or Sharpe Consulting and Alexandra Ross speaking on Privacy Risk Frameworks as part of the new The Art of Privacy series. Further features include Odia Kagan, of Fox Rothschild LLP, on the EDPB and EDPS joint opinion on SCCs as well as interviews with Claire Robson of GOSH Children’s Charity and James Wong of Mills Oakley.  

Data Protection – the answer to vaccine passports 

In his regular editorial, Eduardo Ustaran, Partner at Hogan Lovells LLP, discusses the role of data protection in the rollout of COVID-19 vaccine passports.  

“There is still much to be learned and debated about the future of vaccine passports, but data protection can make a significant contribution to their lawful and ethical roll out, and ensure they are not only a useful tool for living in a post-COVID world but a trustworthy resource available to all.” 

Virginia Consumer Data Protection Act 

Beth Waller of Woods Rogers PLC provides us with an overview of the incoming Consumer Data Protection Act in Virginia and what is might mean for affected organizations. 

“The CDPA takes a uniquely Virginia approach to issues of consumer data privacy and should be watched with particular attention in the next few weeks. The ramp up to 2023 – with the dawning of the CPRA and now potentially the CDPA – is going to be critical for many businesses processing consumer data. The time to begin preparing for both acts is now while mindfully watching for any federal legislation that may emerge as a reaction to these state data privacy acts.” 

The Draft PIPL and the GDPR 

In addition, Dora Luo from Hunton Andrews Kurth LLP, compares the provisions of the draft Personal Information Protection Law (‘PIPL’) in China, and the GDPR in order to illuminate a way forward for organizations operating in China.  

“China's data protection laws are in a period of development and change. On 21 October 2020, the Chinese legislator released the Draft PIPL for public comments. The Draft PIPL provides comprehensive measures, including civil protection and administrative regulations in the field of personal information. The Draft PIPL, together with other two fundamental laws on cybersecurity and data protection, the Chinese Cybersecurity Law 2016 ('CSL') and the Data Security Law of the People's Republic of China (Draft) ('the Draft DSL'), bring about a new data protection legal regime in China.” 

Access Previous issues of Data Protection Leader magazine:  

• Data Protection Leader – December 2020 
• Data Protection Leader – September 2020 
• Data Protection Leader – July 2020 
• Data Protection Leader – May 2020 
• Data Protection Leader – March 2020 
• Data Protection Leader – January 2020 

Follow OneTrust DataGuidance on LinkedIn to keep up to date with new resources, insights, and more.