The US needs a law like this to protect consumers against foreign outsource data traffickers. It makes me wonder if some foreign outsourcers may be in violation of their own laws prohibiting trafficking in personal data.
Here is a part of what the Singapore Personal Data Protection Act 2012 requires regarding prior consent:
Regulations Specific To International Data Transfers
The regulation requires the person whose personal data is being transferred overseas must first give written consent for the transfer AND
- before giving his consent, the individual was given a reasonable summary in writing of the extent to which the personal data to be transferred will meet the Comparable Protection Standard;
- the transfer of personal data overseas, where consent to such transfer is required by the transferring organisation as a condition of providing a product or service, is reasonably necessary to provide the product or service to the individual; or
- the transferring organisation did not provide false or misleading information about the transfer of personal data overseas, or used other deceptive or misleading practices.
You can read more about this law here.
to post a reply:
login - or -
register