As states continue to implement privacy laws, businesses should do what they can to address their data privacy and security practices. They should update privacy policies, address dark patterns, train employees on privacy and security, address data retention, and explore cyber security insurance. What they shouldn’t do is ignore employee privacy or vendor relationships.
