I would like to preface this article with a disclaimer: I am not now, nor have I ever been, nor am I likely to ever be a lawyer. I haven’t even played one on TV so, take what I say with a grain of salt with regards to the legal matters. That said, I am writing from the perspective of what should be rather than what necessarily is.
If you’ve been a privacy professional at any point in the last few decades, your head is spinning with the myriad of privacy laws and regulations in the U.S. and abroad. Some examples are the European Data Protection Directive of 1995, the strengthening of that directive in 2012, the French Data Privacy Law of 1978, Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) of 2001, and last but not least, the U.S. Gramm-Leach-Bliley Act (GLBA) of 1999.
I was sitting around a table last Sunday having lunch, settling my golf bets with some friends from the day’s round. While we don’t play for much, the betting is secondary to the true prize of bragging rights. Nevertheless, as is custom with our friend group, all bets must be settled right after the round.