Hello, December. We're in the home stretch of 2022, but you're just getting started. The privacy law on everyone's mind goes into effect in less than a month, and the countdown is on. (Did someone say CPRA?)

In today's edition:

• Calculate your privacy risk with the click of a button
• A need-to-know privacy pointer
• More privacy news from Meta

Happy reading!

PRIVACY RISK CALCULATOR

We've all heard what they say about making assumptions... and that's no different when it comes to data privacy. Our research found that ~50% of third-party apps go undetected when running data mapping exercises manually. Since you don't know what you don't know, we created a way for you to measure your organization's privacy risk. 

If you're still wondering, but why?, allow us to enlighten you:

🔦 Discover Shadow IT

It’s easier than you think for new apps to get connected to your software stack. They go by many names (extensions, integrations, plug-ins, and more) — and you’re responsible for protecting people’s data shared between them.

👥 Identify Risky Personal Data

Names and emails are just the tip of the iceberg. All kinds of personal data are stored across third-party and owned systems at your company. Detect and map it now to stay ahead of compliance requirements.

❤️ Do Better Business

Put privacy at the heart of your company’s operations to generate trust with your consumers so they keep coming back. Brand credibility — and your bottom line — will thank you.

💡 PRIVACY PRO-TIP

To assess or not to assess? Here are some activities that should prompt a data protection risk assessment (DPIA) at your company.

As a general rule of thumb, a DPIA should generally be carried out before any projects, activities, or professional services that would involve collecting, storing, or otherwise handling sensitive personal information. Some more specific examples include:

–Using new or innovative technology

–Processing biometric or genetic data

–Tracking individuals' location or behavior

These state privacy laws will also require DPIAs in some form or fashion:

✅ California Privacy Rights Act (CPRA)

✅ Colorado Privacy Act (CPA)

✅ Virginia Consumer Data Protection Act (VCDPA)

If you're new to performing risk assessments, get up to speed with DataGrail's guide.

Careers In Privacy

On the hunt for a new role? We've got you covered. Check out our list of curated privacy jobs and sign up for job alerts to get new roles delivered straight to your inbox.

If you're pressed for time, here are this week's highlights:

💼 Klaviyo | Senior Counsel (Privacy)

📍 Remote

Klaviyo is seeking a highly engaged attorney with a passion for all things privacy to join their growing legal team. The ideal candidate is an effective and practical attorney who will work cross-functionally to provide counsel and compliance strategies to teams across Klaviyo on various privacy and data protection matters.

💼 Picsart | Corporate Counsel – Privacy & Product

📍 Miami, FL

In this role, you will serve as a key advisor to the Product, Trust & Safety, Data, and Information Security teams. You’ll have a broad range of responsibilities providing legal guidance that cuts across many areas of law and jurisdictions.

LATEST PRIVACY NEWS

Meta Hit with ~$275M GDPR Penalty

Another day, another fine. As a consequence for breaching European data protection law, Facebook's parent company paid the price.

Snapchat Rolls Out a New Feature to Comply With CPRA

Californians who snap, rejoice. The social media platform announces a toggle switch under Privacy Controls in the app's settings with the option to "limit the use of sensitive personal information."

3 Components of Great Data Discovery

In search of a data discovery solution? Finding the right partner can be tricky, so we boiled it down to three must-have traits. 

PRIVACY POST OF THE WEEK