Data Privacy

BSA members are committed to protecting the privacy and security of consumers’ data. BSA promotes a user-centric approach to privacy that provides consumers with control over their personal data while ensuring industry can continue delivering value to consumers by providing innovative products and services.

BSA supports a single, clear set of strong federal standards for consumer data privacy in the United States and encourages interoperability around the world. Privacy systems must support the free flow of data across international borders so cloud computing and other valuable data services can flourish.

With these considerations in mind, BSA has developed a Privacy Framework as a guide for policymakers as they seek to draft privacy legislation in the United States and BSA Global Privacy Best Practices to encourage high-level standards around the world.

BSA also supports efforts to ensure that law enforcement authorities can access stored content, but only pursuant to a process that has sufficient privacy and due process protections.

BSA supports modernizing data policies so they are clear, effective, and predictable for individuals, businesses, and governments.

FEATURED REPORTS AND POSITION PAPERS

Privacy

Controllers and Processors: A Longstanding Distinction in Privacy

APR 02, 2025 | GLOBAL

This document explains the history of the controller/processor distinction and demonstrates how widely that distinction has been adopted in global privacy laws.

Privacy

US: 2025 Models of State Privacy Legislation

APR 03, 2025 | US

Twenty states have enacted comprehensive consumer privacy laws that create new rights for consumers, impose obligations on businesses that handle consumers’ personal data, and create new mechanisms to enforce those laws.

Privacy

US: Federal Privacy Legislation Can Build on State Privacy Laws

APR 03, 2025 | US

Twenty states have enacted their own privacy laws, but there remains no uniform federal law to safeguard consumers’ personal data nationwide.

Privacy

Data Minimization in State Privacy Laws

MAR 03, 2025 | US

Data minimization requirements are an increasing focus of privacy laws around the world, including state privacy laws in the US.

Transatlantic Data Flows & the EU-US Data Privacy Framework cover

Privacy Cross-Border Data

Strengthening Transatlantic Data Flows

AUG 17, 2023 | US

Companies of all sizes and in all industries need to move data across the Atlantic to reach customers, manage supply chains, collaborate on research, and improve the services they provide to businesses and individuals.

Privacy

BSA Privacy Framework

SEP 11, 2018 | GLOBAL

BSA has developed a Privacy Framework as a guide for policymakers as they seek to draft privacy legislation.

THE LATEST POLICY NEWS

BSA Calls for Performance-Based Approach to Federal Data Security Requirements

APR 24, 2025 | US

Inside Cybersecurity, April 24, 2025. The Business Software Alliance signs a letter as part of an industry coalition encouraging a House GOP privacy legislation working group to consider performance-based data security requirements. Read more

Privacy

BSA Calls for AI-Related Opt-Outs in House Privacy Task Force Comments

APR 16, 2025 | US

Inside AI Policy, April 16, 2025. The Business Software Alliance calls for the inclusion of consumer opt-out rights in privacy legislation in comments to the House privacy task force. Read more

Privacy

BSA Calls on Congress to Build Off Existing State Privacy Frameworks

APR 07, 2025 | US

Politico Pro Morning Tech, April 7, 2025. The Business Software Alliance encourages Congress to create a federal law that echoes existing state privacy frameworks. Read more

Privacy

See all