i2Coalition and eco Provide 7 Lessons in Data Regulation for US Legislators Based on the GDPR Rollout
Good intentions aside, the GPDR introduced 150-plus pages of complex regulations that included little practical guidance on how to implement them.
The Internet Infrastructure Coalition (i2Coalition) and eco: Association of the Internet Industry have witnessed shortcomings in how the GDPR has impacted many businesses in the industry in the quest to protect data privacy.
Based on experiences relayed to us through our members, we have released a joint document “7 Lessons in Data Regulation Learned from GDPR” so that U.S. legislators can learn from what happened in Europe as they approach drafting new privacy frameworks.
Some recommendations include:
- Rather than a one-size-fits-all approach, have different regulations based on the size and nature of the companies involved.
- Treat the exchange of data within a single corporate group as a single entity rather than as separate units.
- Provide assistance and process templates so that companies know how to implement regulations.
As jurisdictions revise existing data laws and create new ones, the rollout of the GDPR provides some guidance on what worked and what didn’t. Please see the report (below) for more lessons and detail on how these data regulations could have been better implemented while still achieving the same underlying goals.
The i2Coalition is the voice for businesses that build the Internet. This includes cloud providers, data centers, domain registrars, registries, and other foundational Internet enterprises.
With more than 1,100 members, eco is the largest Association of the Internet Industry in Europe.