Certain content in the IAPP Resource Center is member-only. Not a member? Join now.
Featured Tools and Trackers
US State AI Governance Legislation Tracker
This tool tracks US state cross-sectoral laws with direct application to the use of AI systems in the private sector.
Read More
Global Privacy Law and DPA Directory
This tool identifies global data protection authorities and privacy legislation. Within each country listing, if available, there will be links to the DPA, privacy legislation and relevant IAPP resources.
Read More
US State Privacy Legislation Tracker
This resource contains a table and map tracking US state privacy laws, and is regularly updated to reflect new state privacy legislation.
Read More
Global AI Law and Policy Tracker
This tracker identifies AI legislative and policy developments in a subset of jurisdictions.
Read More
10 Tips for Global Compliance with Privacy and Data Protection Laws
This list of 10 tips intends to help privacy pros stay on top of compliance with the ever-shifting landscape of global privacy and data protection laws.
Read More
This is a multipart series intended to provide privacy professionals with an overview of new EU legislation adopted since May 2022 under the European Union’s Strategy for Data.
Read More
This resource is intended to aid in compliance with the EU AI Act by providing a high-level overview of its keys requirements for organizations.
Read More
Key Dates of Privacy Reform in Australia
This resource provides an overview of federal privacy reform efforts in Australia and what might be expected going forward.
Read More
US Federal Privacy Legislation Tracker
This tracker organizes privacy-related bills proposed in the U.S. Congress to keep our members informed of developments within the federal privacy landscape.
Read More
This glossary provides definitions and explanations for some of the most common terms related to AI governance.
Read More
European Parliament Legislation Recap
This resource provides an overview of the status of relevant files proposed during the most recent term of European Parliament, while flagging files that will carry over to the next term.
Read More
California Privacy and AI Legislation Tracker
This tracker highlights any California data law with potential privacy or AI governance implications across sectors.
Read More
This chart provides an overview of the EU AI Act, which lays down down a comprehensive legal framework for the development, marketing and use of AI in the EU in conformity with EU values.
Read More
View More Featured Tools
Featured Reports and Resource Articles
Privacy Governance Report 2024
This report builds on previous comprehensive efforts to shine a light on the location, performance and significance of privacy governance within organizations.
US State Comprehensive Privacy Laws Report
This report analyzes similarities and differences between enacted U.S. comprehensive state privacy laws.
Organizational Digital Governance Report
This report provides analysis on the extent to which organizations currently or intend to structure their resources and decision-making to respond to digital governance, providing clarity on the complexity of the current digital policy environment.
Read More
AI Governance in Practice Report
This report aims to inform the growing, increasingly empowered and increasingly important community of AI governance professionals about the most common and significant challenges to be aware of when building and maturing an AI governance program.
Read More
Top 10 operational impacts of the EU AI Act
This series provides walkthrough of the most important components of the EU AI Act.
Read More
Privacy Curricula in US Law Schools
This report, published in collaboration with Washington University in St. Louis’ Cordell Institute, provides an overview of the current landscape of privacy curriculum in US law schools.
Read More
This report represents the most comprehensive study of privacy risk undertaken by the IAPP in collaboration with KPMG.
2023 IAPP Privacy Professionals Salary Survey
This report explores the compensation, both financial and nonfinancial, offered to privacy professionals.
Privacy and Consumer Trust Report
This report shines a light on what consumers around the globe think about privacy and the companies that collect, hold and use their data.
Global AI Governance Law and Policy: Jurisdiction Overviews
This article analyzes the laws, policies, and broader contextual history and developments relevant to AI governance in five jurisdictions: Singapore, Canada, the U.K., the U.S. and the EU.
Read More
Professionalizing Organizational AI Governance
This report on organizational AI governance focuses on the internal guidelines and practices organizations follow to ensure responsible development, deployment or use of AI.
Global Legislative Predictions 2024
For an on-the-ground look at what lies ahead for 2024, the IAPP gathered insights from privacy professionals around the globe.
Read More
Private Rights of Action in US Privacy Legislation
This article examines privacy rights of action in US state and federal privacy legislation, including enforcement provisions contained in the revised discussion draft of the APRA.
Read More
Additional Resources
Implementing Trans-Atlantic Transfers
Implementing kids’ privacy protections around the world
EU AI Act: Next Steps for Implementation
EU AI Act: The web of regulatory intersections
American Privacy Rights Act cheat sheet
Enacted Federal Statutes with PRA
FTC enforcement trends: From straightforward actions to technical allegations
Global data transfer contracts
EU elections explainer: Heading into the next term, reading the smoke signals
Navigating Government Access to Private Data in the EU
Consumer Perspectives of Privacy and Artificial Intelligence
European Institutions Privacy Stakeholder Map
US federal AI governance: Laws, policies and strategies
Implications of the AI executive order for business
Top 10 operational impacts of India’s DPDPA
The Kids Are All Rights: The Conflict between Free Speech and Youth Privacy Laws
What AI Governance Leaders are Thinking About
Countries At-a-Glance: Privacy and Consumer Trust
Health care privacy on the ground: Key challenges and practical solutions
The half-baked future of cookies and other tracking technologies
EU-US Data Privacy Framework – Guidance and Resources
Privacy Resources for Digital Health Data
A practical comparison of the EU, China and ASEAN standard contractual clauses
EU Data Initiatives in Context
EU decision-making at a glance: How do EU laws get approved?
Washington’s My Health, My Data Act
Privacy and AI Governance Report
Featured Topics
Privacy by Region
Browse Topics
Building Your Career
Cloud Computing
Crafting a Privacy Notice
Cross-Device Tracking
Data Protection and Privacy Impact Assessments
Deidentification
Encryption
EU ePrivacy Regulation
Financial Technology
Incident and Breach Management
Location Privacy
Organizational Privacy Policies
Privacy In Education
Prudence the Privacy Pro
Small- and Medium-Sized Businesses
Workplace Privacy
Recently Added Resources
Global AI Law and Policy Tracker
Governance of AI often begins with a jurisdiction rolling out a national strategy or ethics policy instead of legislating from the get-go. This tracker identifies legislative and policy developments in a subset of jurisdictions. The tracker also offers brief commentary on the broader AI context and related developments and identifies laws or policies in parallel professions like privacy. Read More
Privacy pros: Why collaborate with sales and marketing and how to do it well
In this webinar, Osano Chief Revenue Officer Dustin Joost and Senior Product Marketer Cait Ward will lay out why privacy professionals should seek out allies in sales and marketing and how to do it well. Attending this webinar will arm you with insights on how building relationships with sales and marketing can help privacy professionals overcome resource blocks and achieve a stronger compliance posture, how privacy, sales and marketing professionals can turn customer trust into a revenue driver that shortens sales cycles, and what approach privacy professionals should take when seeking out allies in sales and marketing. Read More
Demystifying AI risk: Risk tiering in regulated and nonregulated industries
In the evolving landscape of AI, assessing and managing AI risks is critical for organizations to harness its potential while ensuring compliance, security and ethical use. This webinar will discuss various approaches for tiering AI risks, with examples from two very different industries: health care and retail. Read More
Privacy Governance Report 2024 – Executive Summary
This report provides comprehensive research on the location, performance and significance of privacy governance within organizations. Read More
Privacy Governance Report 2024
This report provides comprehensive research on the location, performance and significance of privacy governance within organizations. Read More
Top 10 tips for career advancement: Empowering women in privacy
The IAPP's Women Leading Privacy Advisory Board put together this list of tips for career advancement in the privacy field. Read More
Unlock privacy ROI: Why making cross-functional allies is key
In this session you will learn how close collaboration across departments can strengthen your privacy program, how to approach stakeholders in security, IT, and GRC functions and build partnerships, and how your collaboration equals more than the sum of its parts and generates return on investment. Read More
30 countries, 200+ domains, one end goal: Managing privacy compliance at scale
Join us to learn how this leading brand partnered with Loop Horizon and harnessed the power of ObservePoint's technology platform to simplify, automate and scale a custom governance solution — ensuring proactive compliance with current and upcoming regulations. Read More
Top 10 operational impacts of the EU AI Act
This article series serves as a walkthrough of the most important components of the EU AI Act. Read More
10 Tips for Global Compliance with Privacy and Data Protection Laws
This resource aims to help privacy pros stay on top of compliance with the ever-shifting landscape of global privacy and data protection laws. Read More