Page Comparison

Many companies are under the misconception that GDPR/DSGVO only applies to them if they have physical establishments in the EU. In reality, GDPR/DSGVO applies to any company operating in the EU, regardless of its physical presence, and companies processing personal data of individuals in the EU, irrespective of their nationality. You can also read our article that explains and compares Data Privacy Laws.

The California Consumer Privacy Act (CCPA) was enacted on January 1, 2020, to protect any personal information that could be linked to California residents. So if you rule an entity that is in California or collects, shares or sells personal data of Californian residents, AND if these apply to your company:

• Annual revenues of more than $25 million

• Data processing of greater than 50,000 users

• Gains at least 50% of revenue from selling personal data,

you must be CCPA-compliant.

Explicitly for healthcare, the U.S. has passed a law called HIPAA (Health Insurance Portability and Accountability) in 1996. Companies working in healthcare, healthcare providers such as hospitals, doctors, or even government programs such as Medicare, should check if their Jira and Confluence instance is HIPAA-compliant. You can do the HIPAA-compliance check here.

You can also read our article that explains and compares Data Privacy Lawsall over the world.  

And if you’re still not sure whether you should comply to certain guidelines, this might help:

What is PII in general?
Any representation of information that permits the identity of an individual to whom the information applies to be reasonably inferred by either direct or indirect means.