alt Hacker News> Maybe there should be some kind of annual ISO privacy certification for companies that resell any customer data in any form
Why is this better than requiring deletion?
> Maybe there should be some kind of annual ISO privacy certification for companies that resell any customer data in any form
Why is this better than requiring deletion?
For starters, it provides protection and accountability for those who don't have the prior presence of mind to demand deletion.
An act which mandated deletion in all cases for data once business needs are addressed (often 30--90 days for much data), might address your question. But the Delete Act isn't that.