Companies in 2020 must comply with more data privacy laws than ever before. Effective on January 1, the California Consumer Privacy Act (CCPA) contains the most complex data privacy compliance requirements in U.S. history. Some other states have their own requirements, and more states are following suit; many are considering data protection laws while their legislatures are in session.
Compliance with the CCPA and other relevant privacy laws and industry standards involves much more than a brief privacy law update and presents multiple opportunities for customer engagement. Consider using those opportunities to enhance your relationship with your customers. How companies handle consumer data has already become one way in which consumers evaluate whether to do or continue doing business with a particular company. Poorly handled data privacy issues quickly create negative customer experiences, online reviews, and bad press. Differentiate your company by handling customer data — and customer relationships — with intentionality and care.
As many brand owners know, WHOIS data is the publicly available information on who has registered a particular internet domain name. In layman’s terms, WHOIS records are akin to land title or property tax records: a record of who owns the internet property of domain names available in .com, .net and other generic top-level domain (gTLD) spaces. Each WHOIS record contains basic contact information for the domain name registrant: name, address, phone number, email address and certain other technical attributes. Since the dawn of the internet, gTLD registrars and registries – those companies who sell domain names – have collected contact information from all registrants at the time of registration.
When people talk about data privacy, or data collection, or tracking technology, or analytics, or click farms, or bots, or data brokers, or geolocation, or mobile apps, or social media, or influencers, in the end what they’re really talking about is digital advertising. Yet while we may feel comfortable using the phrase to broadly describe any online marketing efforts, the purpose of digital advertising is quite different from the goal of a 30 second radio spot, and shares little with its Mad Men-era ancestors beyond the name.
But today, faced with a variety of new laws and regulations designed to protect consumer privacy, lawyers and their clients are obliged to take a much deeper and more nuanced dive into modern methods of digital advertising. And many are surprised at what they find.
Since the European Union’s General Data Protection Regulation (GDPR) went into effect in late May, its impact continues to be felt by cybersecurity researchers, investigators, law enforcement officials and – perhaps less obviously – anyone who relies on the information provided by the Internet Corporation for Assigned Names and Numbers’ (ICANN) WHOIS service. This includes lawyers, like us, who routinely check WHOIS to ascertain the identity of a domain name registrant.