TrustArc Blog

Special Webinar Event! The Path to U.S.- Japan Data Transfer Compliance

February 06, 2019

TrustArc is excited to host a special webinar event with speakers from the U.S. Department of Commerce and Cisco next Wednesday, February 13th at 9AM PT / 12PM ET / 5PM GMT. Register today! Are you a U.S. company doing business in Japan? Japan is home to many subsidiaries of U.S.- headquartered companies that need to transfer data out of Japan to other parts of the world, including the United States. Japan’s data protection law, the Act on the Protection of Personal Information (APPI) requires receiving organizations to demonstrate that sufficient data protections are being used for data transfers out … Continue reading Special Webinar Event! The Path to U.S.- Japan Data Transfer Compliance

Workday and Envestnet | Yodlee Demonstrating Best Privacy Practices for Processors through APEC PRP Certification

December 06, 2018

Global companies are increasingly more concerned with ensuring the privacy and security of the information they hold. Not only is complying with international privacy regulations and frameworks important to avoid fines, but it is also critical for building trust with customers, mitigating risks, and protecting the company’s reputation. One way that companies can demonstrate compliance is by adhering to a recognized international privacy framework, such as the Asia-Pacific Economic Cooperation (APEC) framework as demonstrated by the  APEC Privacy Recognition for Processors (PRP) certification. Like the APEC Cross Border Privacy Rules (CBPR) system (which applies to data controllers), the APEC PRP … Continue reading Workday and Envestnet | Yodlee Demonstrating Best Privacy Practices for Processors through APEC PRP Certification

Japan’s Amended Privacy Law to Go into Effect May 30, 2017 – CBPRs Recognized as an Approved Transfer Mechanism

May 22, 2017

In September 2016, Japan passed the “Amended Act on the Protection of Personal Information (APPI)” with implementing regulations released in January, 2017.  The final revised law is set to  go into effect on Tuesday, May 30, 2017.  Key changes under the new law include: Establishment of the Personal Information Protection Commission (PPC): The new PPC serves as the central supervisory authority for the APPI.  Previous authority was divided across multiple regulatory authorities by sector. Establishment of a Legal Framework for Anonymously Processed Information: The revised APPI provides specific guidance on the use of anonymized data (including approved methods for anonymizing … Continue reading Japan’s Amended Privacy Law to Go into Effect May 30, 2017 – CBPRs Recognized as an Approved Transfer Mechanism

5 Benefits of APEC CBPR Certification You Should Know About

March 13, 2017

1) Jurisdiction-Specific Transfer Benefits: In Japan, companies that have a CBPR certification do not have to obtain consent to transfer data to another country, which is otherwise required under Japanese law. 2) Facilitation of APEC-European Interoperability: An APEC CBPR certification may make it easier for an organization to obtain approval of their Binding Corporate Rules in the European Union. Since 2013, APEC member Economies and EU officials have been collaborating to promote interoperability between the two regional transfer mechanisms. 3) Alignment with Global Frameworks: An APEC CBPR certification is based on many of the same principles that inform the OECD … Continue reading 5 Benefits of APEC CBPR Certification You Should Know About

Korea Next to Join Cross Border Privacy Rule (CBPR) System

January 19, 2017

  The CBPR system continues to build momentum in the Asia Pacific region, with S. Korea becoming the latest APEC economy to submit their Intent to Participate. This follows on the heels of Taiwan’s announcement to follow suit later this year. Korea offers significant market opportunity for American exporters. Korea’s participation in the APEC CBPR System will promote digital trade, benefit companies in the United States and around the region, and drive uptake of higher privacy standards for consumers in the Asia-Pacific, said Acting Assistant Secretary for Industry and Analysis, Ted Dean in response to this week’s announcement. On Monday, an … Continue reading Korea Next to Join Cross Border Privacy Rule (CBPR) System

Cross Border Privacy Rules: Uptake Increases as Heads of State Affirm Commitment

November 23, 2016

On November 20, the Heads of State for the 21 APEC member economies met in Lima, Peru at the annual APEC Leaders’ meeting.  In their Joint Declaration, APEC Leaders once again recognized “the importance of implementing the APEC Cross-Border Privacy Rules (CBPR) System, a voluntary mechanism whose participants seek to increase the number of economies, companies, and accountability agents that participate in the CBPR System.”  During his press conference in Lima, President Obama specifically called out the group’s endorsement as a way to advance the digital economy and “to protect the privacy of personal information as it crosses borders.” High-level … Continue reading Cross Border Privacy Rules: Uptake Increases as Heads of State Affirm Commitment