Page 136 - Cyber Defense eMagazine January 2023
P. 136

The good, the bad, and the ugly

            If and when these laws come into effect, the US government will have made tremendous strides by
            introducing a protection law at both the federal and national levels. One immense benefit of this is that it
            is being kept bipartisan and will be clear and concise, with no contradictory state laws that could get
            messy.  But  as  with  anything,  there  are  potential  challenges  and  downsides.  With  the  ADPPA,  a
            tremendous negative is that it is not compatible with European laws and will have many contradictions
            with companies abroad as well as US subsidiaries abroad, and different laws and regulations will be
            enforced in addition. In order for CCPA and ADPPA to be successful, strict enforcement will be essential.
            As we’ve seen with our European counterparts, if companies don’t have real consequences or penalties,
            enforcement will be unlikely. What will the enforcement of CCPA and ADPPA be? One thing that is clear
            is that it will have to be enough to scare to take action and implement.


            Overall,  decision-makers  have  much  work  to  do  in  order  to  make  CCPA  and  ADPPA  a  success.
            Enforcement  will  be  the  most  crucial  factor.  The  stricter  the  enforcement,  the  higher  likelihood  of
            compliance and will dictate implementation willingness across the board. In the US, regulators have
            notoriously just given a smack on the wrist, ultimately causing executives and security leaders to not fear
            potential  consequences.  What  needs to  happen  is  CIOs  and  Security  officers  need to  communicate
            effectively to the executive team that these regulations could result in significant fines. They should ask
            themselves whether they want to be the company that pays the 10 million fine and is made an example
            of?

            Lastly,  compatibility  with  GDPR  will  be  key  because  the  world  is  so  interconnected  in  every  sense.
            Because GDPR is tried and tested, the closer CCPA and ADPPA are made to mirror it, the bigger a win
            it will be for everyone.





            About the Author

            World-Renowned  Cybersecurity  Expert  With  more  than  30
            years  of  network  security  experience,  Dr.  Eric  Cole  is  a
            distinguished cybersecurity expert and keynote speaker who
            helps organizations curtail the risk of cyber threats. Dr. Cole
            has worked with a variety of clients ranging from Fortune 500
            companies, top international banks to the CIA. He has been
            the featured speaker at many security events and also has
            been  interviewed  by  several  chief  media  outlets  such  as
            CNN, CBS News, FOX News and 60 Minutes.











            Cyber Defense eMagazine – January 2023 Edition                                                                                                                                                                                                       136
            Copyright © 2023, Cyber Defense Magazine. All rights reserved worldwide.
   131   132   133   134   135   136   137   138   139   140   141