TrustArc Blog

Workday and Envestnet | Yodlee Demonstrating Best Privacy Practices for Processors through APEC PRP Certification

December 06, 2018

Global companies are increasingly more concerned with ensuring the privacy and security of the information they hold. Not only is complying with international privacy regulations and frameworks important to avoid fines, but it is also critical for building trust with customers, mitigating risks, and protecting the company’s reputation. One way that companies can demonstrate compliance is by adhering to a recognized international privacy framework, such as the Asia-Pacific Economic Cooperation (APEC) framework as demonstrated by the  APEC Privacy Recognition for Processors (PRP) certification. Like the APEC Cross Border Privacy Rules (CBPR) system (which applies to data controllers), the APEC PRP … Continue reading Workday and Envestnet | Yodlee Demonstrating Best Privacy Practices for Processors through APEC PRP Certification

Japan’s Amended Privacy Law to Go into Effect May 30, 2017 – CBPRs Recognized as an Approved Transfer Mechanism

May 22, 2017

In September 2016, Japan passed the “Amended Act on the Protection of Personal Information (APPI)” with implementing regulations released in January, 2017.  The final revised law is set to  go into effect on Tuesday, May 30, 2017.  Key changes under the new law include: Establishment of the Personal Information Protection Commission (PPC): The new PPC serves as the central supervisory authority for the APPI.  Previous authority was divided across multiple regulatory authorities by sector. Establishment of a Legal Framework for Anonymously Processed Information: The revised APPI provides specific guidance on the use of anonymized data (including approved methods for anonymizing … Continue reading Japan’s Amended Privacy Law to Go into Effect May 30, 2017 – CBPRs Recognized as an Approved Transfer Mechanism

5 Benefits of APEC CBPR Certification You Should Know About

March 13, 2017

1) Jurisdiction-Specific Transfer Benefits: In Japan, companies that have a CBPR certification do not have to obtain consent to transfer data to another country, which is otherwise required under Japanese law. 2) Facilitation of APEC-European Interoperability: An APEC CBPR certification may make it easier for an organization to obtain approval of their Binding Corporate Rules in the European Union. Since 2013, APEC member Economies and EU officials have been collaborating to promote interoperability between the two regional transfer mechanisms. 3) Alignment with Global Frameworks: An APEC CBPR certification is based on many of the same principles that inform the OECD … Continue reading 5 Benefits of APEC CBPR Certification You Should Know About

Korea Next to Join Cross Border Privacy Rule (CBPR) System

January 19, 2017

  The CBPR system continues to build momentum in the Asia Pacific region, with S. Korea becoming the latest APEC economy to submit their Intent to Participate. This follows on the heels of Taiwan’s announcement to follow suit later this year. Korea offers significant market opportunity for American exporters. Korea’s participation in the APEC CBPR System will promote digital trade, benefit companies in the United States and around the region, and drive uptake of higher privacy standards for consumers in the Asia-Pacific, said Acting Assistant Secretary for Industry and Analysis, Ted Dean in response to this week’s announcement. On Monday, an … Continue reading Korea Next to Join Cross Border Privacy Rule (CBPR) System

Cross Border Privacy Rules: Uptake Increases as Heads of State Affirm Commitment

November 23, 2016

On November 20, the Heads of State for the 21 APEC member economies met in Lima, Peru at the annual APEC Leaders’ meeting.  In their Joint Declaration, APEC Leaders once again recognized “the importance of implementing the APEC Cross-Border Privacy Rules (CBPR) System, a voluntary mechanism whose participants seek to increase the number of economies, companies, and accountability agents that participate in the CBPR System.”  During his press conference in Lima, President Obama specifically called out the group’s endorsement as a way to advance the digital economy and “to protect the privacy of personal information as it crosses borders.” High-level … Continue reading Cross Border Privacy Rules: Uptake Increases as Heads of State Affirm Commitment

APEC Cross Border Privacy Rules Advancing in Asia

July 29, 2016

Over the last three weeks, privacy-focused events in China, South Korea and Singapore have highlighted the growing momentum of APEC’s Cross Border Privacy Rules (CBPR) system in the region. On June 29, China’s Ministry of Commerce, Foreign Ministry, General Administration of Customs and the China International Electronic Commerce Centre (CIECC) hosted the 6th APEC E-Commerce Business Alliance (ECBA) Forum in Jinjiang, Fujian province, China. The U.S. representatives to the ECBA are TRUSTe’s Director of Policy, Josh Harris, Markus Heyder, Vice-President of the Centre for Information Policy Leadership and Manuel Maisog, partner at Hunton & Williams, Beijing.   In his keynote address, APEC Secretariat Executive Director Alan Bollard … Continue reading APEC Cross Border Privacy Rules Advancing in Asia