Every time you join a video call, use a cloud app, or interact with an AI tool, your data is likely crossing borders. But that’s not unusual.  It’s how the modern digital economy works. However, as data moves more freely across countries, it raises a fundamental question for governments and businesses: Can we protect privacy and national interests without slowing innovation? 

Cisco’s 2026 Privacy Benchmark Survey suggests businesses believe the answer is yes; a smarter, more global and interoperable approach should lead the way.  

Businesses Want Simpler Global Frameworks 

A striking 83% of respondents say harmonized global data protection rules would reduce the need for country-specific data localization laws. 

That matters. Today’s regulatory environment is increasingly complex. Take for example the EU’s General Data Protection Regulation (GDPR), which had a significant impact on the global privacy landscape and ushered in a new era of data protection laws all over the world. As more jurisdictions develop their own frameworks and rules, organizations are managing a growing patchwork of overlapping requirements.  

Together this creates the perfect storm: Duplicate infrastructure. Overlapping compliance programs. Increased costs. Slower innovation. 

Turning Principles into Practice 

The survey found that many organizations are advocating for the principle of Data Free Flow with Trust (DFFT), the idea that data can move across borders provided safeguards are in place The Global Cross-Border Privacy Rules Forum (Global CBPR Forum) is translating that principle into action. Its certification-based framework allows participating economies to recognize trusted data transfers grounded in enforceable standards and accountability mechanisms. 

Rather than requiring data to stay within national borders, CBPR demonstrates that trust can travel with the data. This shift, from geography-based control to accountability-based governance can and should redefine how governments approach digital policy.  The Global CBPR Forum is attracting significant interest from all corners of the globe, including Africa, the Middle East and the Western Hemisphere   

In the AI era, the common thread is that AI systems rely on diverse datasets; cybersecurity requires global threat intelligence; digital services depend on seamless data movement; and trust is becoming infrastructure. 

 For organizations looking to strengthen digital trust and enable responsible AI deployment, embedding risk-based oversight, measurable accountability, integrated privacy and cybersecurity governance, and transparent data practices is foundational.  

The survey emphasizes that now is the time to shift from reactive compliance to proactive alignment with global data governance frameworks. Early adopters will not only streamline compliance and establish themselves as trusted leaders in the global AI economy.   As AI adoption expands and cross-border data flows become even more critical, privacy and data policies will become increasingly important. 

Despite global momentum toward interoperable frameworks, the U.S. lacks a comprehensive federal data privacy law. Although the U.S. has a strong privacy foundation – without a national baseline, U.S. companies must navigate a patchwork of state laws while aligning with international regimes at home. That dual complexity increases costs and limits America’s ability to shape the global landscape. .  A comprehensive privacy law in the United States would also make it easier for Americans to understand their baseline protections, which will facilitate trust, AI adoption, and innovation. 

We invite industry leaders, policymakers, and privacy professionals to explore the full findings of Cisco’s 2026 Privacy Benchmark Survey here and join us in advancing global data governance. Together, we can build a future where trust, innovation, and responsible data use go hand in hand. Visit our website to download the report and learn how your organization can lead the way.