• Login
  • Status
  • Support
  • Partners
  • Pricing
  • Careers
  • EN
    • English
    • Deutsch
    • Français
    • 日本
    • 简体中文
    • العربية
    • 한국
    • Español
NICE - AI Customer Service Automation Solutions
  • NICE - AI Customer Service Automation Solutions×
  • Platform

    CXone Mpower Platform

    • Workflows

      Automate every service workflow

    • Agents

      Maximize agent performance

    • Knowledge

      Centralize data and knowledge

    Customer Service Automation

    • Platform Overview

      Complete AI Platform for service automation

    • Integrations & Hubs

      Seamlessly connect your business systems

    • Trust and Compliance

      Ensure secure, reliable, and compliant operations

    • Developer Portal

      Access APIs, SDKs, and resources for building

    • CXexchange Marketplace

      Discover partner solutions to extend capabilities

    • User Communities

      Collaborate, learn, and share best practices

  • Products

    Complete CX Offerings

    • AI for Customer Experience

      Purpose-built AI for unparalleled CX automation

    • Digital and Self Service

      Friction-free customer experiences driven by conversational AI

    • Workforce Engagement Management

      Robust applications to optimize the employee experience (WEM)

    • Journey Orchestration and Routing

      Seamless customer journeys across voice & digital channels

    • Agent Assist

      AI-driven tools for real-time agent guidance and coaching

    • CX Analytics

      Actionable insights to continuously enhance the customer experience

    • Open Cloud Platform

      Innovative cloud-native foundation to rapidly scale extraordinary CX

    • All CX Offerings

  • Solutions

    By Industry

    • BPO

      Business Process Outsourcers

    • Financial Services

      Customer experiences that count

    • Government

      Elevate citizen trust

    • Healthcare

      Healthy patient experiences

    • Insurance

      Secure policyholder experiences

    • Retail

      Delight customers where they shop

    • Telecom

      CX for Telecommunications

    • Travel and Hospitality

      Strengthen traveler and guest loyalty

    By Business Initiative

    • Transform Experiences with AI

      Identify behaviors that drive frictionless customer experiences.

    • Boost Customer Loyalty

      Improve customer loyalty on every interaction across the journey

    • Call Center Software

      Empower your agents to provide better experiences—on every channel.

    • Drive Digital Transformation

      Integrate digital technology at the center of the customer experience

    • Move to the Cloud

      Elevate experiences and efficiencies by moving operations to the cloud

    • Unify CX Touchpoints with AI

      Unlock total awareness for your business with purpose-built AI on a unified platform

    • Increase Operational Efficiency

      Leverage AI and automation to increase agent retention and reduce costs

    • Improve Compliance

      Protect your consumers with pre-built compliance solutions

    • Engage and Empower Employees

      Create a workplace of truly engaged employees

    • Proactive Customer Engagement

      Elevate customer satisfaction with proactive conversational AI

    • Grow Revenues

      Boost conversions and win rates to accelerate financial success

  • Services

    Contact Center Services

    • Business Consulting

      Partnership for successful transformations

    • Contact Center Training

      Tailored education delivered by CX experts

    • Customer Support

      Global support you can depend on

    • Professional Services

      Relevant expertise, tools and know-how

    • Implementation Partners

      NICE CXone certified implementation partners

  • Resources

    Resources

    • Resource Library

      Whitepapers, datasheets, demos and more

    • Self-Led Training

      Professionally developed training courses

    • Blog

      CX industry guidance by contact center experts

    • Analyst Perspective

      Contact center reports from third party analysis

    • Events

      Upcoming events and webinars

    • Glossary of Terms

      Detailed descriptions of industry-related terms

    • Frequently Asked Questions

      Contact center focused FAQ

    • Customer Stories

      Driving success in every customer story

    • CX & Contact Center Guides

      Expert insights for superior CX

    • On-Demand Webinars

      Browse our extensive webinar catalog

    • Interactive Product Tours

      Explore the complete CXone cloud platform with our instant self-guided product tours.

    • Why NICE? Video Series

      Step Inside The Room Where It Happened to see CX AI in action

  • Company

    About NICE

    • About Us

      Powering seamless experiences in the cloud

    • NICE Leadership

      Meet our global leadership and executive team

    • Careers

      View job openings and learn about our culture

    • NICE Trust Center

      Securing your trust with every interaction

    • Events

      Upcoming Events & Webinars

    • Market Leadership

      Discover why NICE is the market leader

    • Press Releases

      Find the latest updates from NICE

    • Investors

      Investors relations, reports and filings

    • Corporate Responsibility

      In a world where you can be anything, be NICE

    • Global Office Locations

      Interactive map of office locations worldwide

    • Media Center

      Media contacts and resources

    • EN
      • English
      • Deutsch
      • Français
      • 日本
      • 简体中文
      • العربية
      • 한국
      • Español
    • Get in Touch
      • Login
      • Status
      • Support
      • Partners
      • Pricing
      • Careers
      linkedinlinkedinlinkedinlinkedin

    Company

    • About Us
    • Careers
    • Global Leadership
    • Media Center
    • Investors
    • Awards
    • Global Office Locations
    • Contact Us
    • CCaaS
    • Customer Experience
    • NICE Public Safety
    • NICE Actimize
    • NICE RPA

    Partners

    • NICE Partners Overview
    • Developer Partners (DEVone)
    • CXone Partner Portal
    • NICE Help Partner Portal
    • NICE User Group

    Customer Support

    • Customer Support Overview
    • CXone Support Login
    • NICE Customer Support

    Want to Learn More?

    Join the Newsletter

    STAY CONNECTED

    linkedinlinkedinlinkedinlinkedin
    • Terms of Use
    • Site Map
    • Privacy Policy
    • Legal
    • Cookies Settings
    • Accessibility
    © 2024 NICE
    The evolving US data protection landscape: A timely update

    The evolving US data protection landscape: A timely update

    by Yael Stanger Sonsino
    July 27, 2023
    Share

    If you are a contact center (or any consumer-facing business) operating in California or Colorado, heads up! Effective July 1, 2023, you can face thousands of dollars in fines for violating data privacy laws in those states.

    After a bit of a delay, the brand-new California Privacy Protection Agency (CPPA) began enforcing the provisions of the California Privacy Rights Act (CPRA). The California law is among the most strict out of the gate, as it allows no grace period to correct reported breaches and a fine of up to $7,500 for each violation.

    The Colorado Privacy Act (CPA), meanwhile, provides a cure period of 60 days. On the other hand, if you don’t take corrective action, then you can face a whopping fine of up to $20,000 per violation.

    In other words, pay attention. In the United States, different states have different laws, and each sector might even have its own standards for data security, depending on the jurisdiction.

    While the legislative approach in the US has traditionally not included an expectation of privacy regarding personal data, over 10 states are in the process of implementing new comprehensive and rights-based data protection laws. In addition to the CPRA the CPA coming online, such laws are already in effect in Connecticut and Virginia. As of this writing, the Utah Consumer Privacy Act is slated to go into effect by the end of 2023 and the Montana Consumer Data Privacy Act in October 2024. The Tennessee Information Protection Act and the Iowa Consumer Data Protection Act will do so in 2025, and the Indiana Consumer Data Privacy Act by January 2026. Similar pieces of legislation, the Texas Data Privacy and Security Act and the Florida Digital Bill of Rights, have yet to be signed into law. If they are passed, which is overwhelmingly likely, then they will take legal effect in July 2024.

    All the new state laws attempt to standardize the collection and use of consumers’ personal information by imposing similar obligations on businesses regarding transparency and privacy notifications, as well as limiting their ability to process certain kinds of data. Companies in those states must also perform data protection assessments for the information they collect and retain. Like the European GDPR, the new laws explicitly protect the individual’s control over their personal information, including access, correction, deletion, transfer, and the option to block certain uses.

    However, there are also some distinct differences among the various state laws:

    ‘Sensitive personal data’

    The first thing to consider is what exactly constitutes “sensitive personal data” that the new laws are intended to protect?

    The various states all agree that race, ethnic origin, religion, philosophical beliefs, biometric data, and personal health information fall under the rubric of sensitive personal data. But that’s where it ends.

    California has adopted the broadest definition, including items that no other state does, such as ID numbers (SSN, passport, etc.), account and credit card numbers, union membership, and email texts. Virginia and Colorado, on other end of the scale, use the most limited definition of all the states on our list.

    Consent

    Another aspect of data privacy is consent laws, which can cover voice recordings and data collection. For recordings, US federal law and most states only require one party to a conversation to give consent, but 11 states require all-party consent. Adding to the patchwork quilt of recording laws is the fact that some states require consent to be explicitly stated, whereas other states accept implied consent based on behavior or location.

    As for data collection, all the new state laws allow people to opt-out at any time and demand that their personal information (as defined in each state) not be captured by a particular company. Most have an opt-in clause, which requires businesses to obtain consent from individuals before collecting sensitive personal information (or information on known children). Some states also require businesses to recognize and respect automated opt-out preference signals (global privacy controls, such a browser settings and the like).

    Enforcement and penalties

    Most of the US state data privacy laws do not include a provision providing a private right of action, although a civilian complaint may trigger an investigation. On the other hand, the CPRA allows private individuals to initiate legal action in response to data breaches that compromise their personal data.

    As already noted, penalties for violating the various laws differ according to state. Utah and Connecticut, for example, impose a fine of $5,000 per violation; however, Iowa and Utah allow the organization a grace period of 90 and 30 days, respectively, to correct the breach of data privacy. Montana’s 60-day cure period provision, on the other hand, will terminate on April 1, 2026. Tennessee will triple fines for willful or knowing violations of the law, while Colorado caps possible penalties at $500,000.

    Future outlook

    Tighter data privacy and protection requirements in the US - covering a wider scope of activities and providing more extensive enforcement options - are primarily designed to prevent deceptive business practices, negligence, and fraud. The rapid development of communication technology and channels will make this process even more urgent and critical.

    That’s why the immediate forecast is for more US states and jurisdictions to join this trend in the coming months and years. While no federal law governing online privacy has yet been enacted by Congress, a new bill – the American Data Privacy and Protection Act, H.R. 8152 – passed through the House Energy and Commerce Committee nearly without opposition in July 2022. The proposed legislation would standardize and unify protections and corporate obligations, and empower the Federal Trade Commission to issue regulations and enforce compliance.

    Stay tuned.

    How NICE Compliance Center can help you

    NICE Compliance Center reduces complexities and turns regulatory compliance headaches into easy, automated, simplified tasks. It will assist you in dealing with all the rapidly developing changes to global data privacy standards, as we’ve seen most recently in the US market. Whether you are a brick-and-mortar contact center or cloud-based, NICE Compliance Center will keep you in the race and give you peace of mind.

    Uncompromising compliance

    For effective compliance in the contact center, you need real-time active monitoring, analysis, and agent guidance. You also need to be able to capture, retain, identify, and retrieve every customer interaction in the event of a claimed regulatory breach.

    NICE Compliance Center Key Features

    • Compliance Assurance dashboards with widgets for detecting violations and taking corrective actions.
    • DIY Policy Manager with automated processes and approval flows for deletion, extraction, retention, playback lock, and litigation hold.
    • Real-time agent notifications for recording assurance, pause, resume, and audio loss with ConnectAPI or IntelliAgent.
    • Analytics insights for violation detection, consent management, PCI detection, and script adherence.

    NICE Compliance Center provides it all. It is an end-to-end solution to monitor and manage all your regulatory compliance and policy adherence activities in one place. Powered by the market-leading NICE Engage platform and intelligent analytics, it identifies gaps in compliance and automatically provides real-time notifications to agents, together with tools for taking corrective action.

    NICE Compliance Center puts you in control, while improving your contact center’s operational efficiency and the customer experience. It enables you to:

    • Comply with multiple regulations: MiFID II, HIPAA, Dodd-Frank Act, FCA, GDPR, PCI-DSS, CCPA/CRPA, PIPEDA, ECPA, PDPA, PDPB, and more.
    • Ensure interactions are safely stored and discoverable, including tagging for search and retrieval – one of the most challenging aspects for database compliance.
    • Reduce the time and complexity involved in carrying out policy updates, such as changing retention periods.
    • Evaluate compliance levels for any team, at any time.

    As a result, you’ll see improvement in KPIs like total cost of ownership (TCO) and reduced time to remediate breaches. A proactive approach lowers the risk of regulatory violations, makes it easier to take corrective action, and saves time and resources with more targeted retention. In the event of an audit or data privacy claim, NICE Compliance Center makes it easy to search for all impacted interactions and, if need be, apply playback lock or extraction.

    Preemptively spot compliance risks, improve IT efficiency, and keep customers happy with NICE Compliance Center – even when the rules keep changing.

    About the Author

    Yael Stanger Sonsino

    Creative thinker, Yael has over eight years of proven experience in developing marketing plans and campaigns that drive real growth. Prior to joining NICE, she worked at Philips where she started out as a marketing assistant. Her strong project management, multitasking, and decision-making skills enabled her to quickly progress to the role of senior marketing manager, responsible for leading, planning, and executing all marketing activities for the entire personal health product line.

    See All Blogs

    Follow Us

    Follow us to get the latest news from your preferred Social Network

    linkedinlinkedinlinkedinlinkedin

    Popular Posts

    November 14, 2024

    Enhancing constituent experience in government: Strategies for efficient public service delivery

    Read

    November 12, 2024

    The State of CX report: We’ve got plenty to share from our abundance of riches

    Read

    November 6, 2024

    Customer Feedback Unplugged: Harnessing VOC insights to boost agent performance and elevate CX

    Read
    CXone Mpower: Automating every dimension of customer service on the ultimate AI hyper platform

    November 5, 2024

    CXone Mpower: Automating every dimension of customer service on the ultimate AI hyper platform

    Read

    October 29, 2024

    How a focus on soft skills empowers agents and boosts CX

    Read

    More from the blog

    Customer ExperienceNovember 14, 2024

    Enhancing constituent experience in government: Strategies for efficient public service delivery

    Read
    AINovember 12, 2024

    The State of CX report: We’ve got plenty to share from our abundance of riches

    NICE is lucky to have an abundance of riches—I’m speaking of data, of course. Through our proprietary AI built just for CX, we’ve gathered data for over three decades amounting to billions of interactions.

    Read
    Voice of the CustomerNovember 6, 2024

    Customer Feedback Unplugged: Harnessing VOC insights to boost agent performance and elevate CX

    Agent engagement and satisfaction have become proxy measures for CX success, because in study after study, it’s been proven that happier agents lead to happier customers.

    Read