Latest Publications

Share:

Cannabis Businesses are Subject to the Same Laws that Other Businesses Are: So Don’t Let the TCPA Bite You

Whether a cannabis firm is in the recreational or the medicinal space it seems as though there is an excess of rules and demands whichever way you turn. The new California regulations read like those for a proper...more

Interesting Cybersecurity Development in the Insurance and Vendor Risk Arena

Often one of the benefits of working with a capable cyber risk broker or insurer is that the covered business has access to supplemental services ranging from security assessments to budget-priced post-incident legal support....more

The EDPB Has Released an Opinion on the Interplay between the GDPR and the ePrivacy Directive: It’s Worth Reading

On March 15, 2019, the European Data Protection Board published Opinion 5/2019 on the interplay between the ePrivacy Directive and the GDPR, in particular regarding the competence, tasks, and powers of data protection...more

The Importance of Privacy by Design in Mobile Apps (Debunking the Aphorism that any Publicity is Good Publicity)

On Friday, February 22, the Wall Street Journal ran a story titled “You Give Apps Sensitive Personal Information. Then They Tell Facebook” (subscription required). The report gained further traction over the weekend, and by...more

Medicinal Cannabis and the Need for Data

Discoveries advance on a regular basis as to how cannabidiol and related therapeutics can heal or at least relieve the pain associated with health conditions. From cancer and opioid addiction to chronic pain and glaucoma,...more

The EU GDPR and The Borg

For those of a certain generation the concept of “The Borg” invokes a seemingly inevitable force that pulls opponents into the “Collective” through a process of assimilation. According to the inestimable source, Wikipedia,...more

Security Standards for Medicinal Cannabis Businesses

Last week the firm moderated a discussion of banking and lending in the cannabis industry. The event was well attended and most importantly provided practical insights concerning the financing of cannabis businesses...more

Washington State Potentially Joins California with Broad Privacy Legislation

If nature abhors a vacuum, then apparently so too does legislation. Between the EU General Data Protection Regulation and the still-evolving California Consumer Privacy Act (CCPA), there has been much discussion amongst us...more

HHS Releases Voluntary Cybersecurity Practices, Supplementing Existing Requirements

At the close of 2018, the Department of Health and Human Services (HHS) published Health Industry Cybersecurity Practices (HICP): Managing Threats and Protecting Patients. While not formally styled as guidance or interpretive...more

Three Questions to Assess How Detailed Your Organization’s Website Policy Should Be

If your organization has a website, it probably needs a publicly posted privacy notice explaining how personal data is (or is not) collected, used, protected, and shared. Privacy notices are expressly required under some...more

Healthcare and Innovators, Take Note: The HIPAA Privacy RFI Can Benefit You

This past Friday, the Office of Civil Rights within the U.S. Department of Health and Human Services published a formal Request for Information on Modifying HIPAA Rules to Improve Coordinated Care. The RFI’s publication...more

Should You Go “All In” with the Cloud? (And How to Manage That Risk)

While references to “the cloud” and “cloud computing” are significantly more familiar than they were five years ago, it remains clear that many organizations implement cloud resources ineffectively – or at least do not...more

Early Lessons from the Marriott Breach

On November 30th, Marriott announced that a guest reservation database on the Starwood side of its business had been breached. Initial reports indicated that upwards of 500 million individuals were affected. The stolen data...more

Call Me, Maybe

$4.8 million. That is an impressive class-action settlement number, particularly when you consider that the automated calls and texts triggering the litigation and settlement arose from a single auto dealership. The auto...more

Goldilocks and the Three Laws

A recent Harris Poll surveyed adults on the topic of corporate social responsibility and found, not surprisingly, that a majority of those asked stated that companies should – or perhaps “ought” – to have a mission beyond...more

The Benefits of the NIST Cybersecurity Framework for the Private Sector

Organizations of all types are increasingly subject to data theft and loss, whether the asset is customer information, intellectual property, or sensitive company files. The federal government and, thus, its private...more

The Importance of Context with Genetic Privacy

As consumers, when we think of privacy, one of the first adjectives that springs to mind should be “inconsistent.” Consumers claim to want their personal information used only for the purposes they originally provided it, and...more

The Continuing Challenge of Cybersecurity Hygiene in Digital Health and Life Sciences

A recent issue of MIT’s Technology Review magazine is titled, “Look how far precision medicine has come.“ At least part of the premise is that personalized medicine or precision medicine is not perceived as having made the...more

What the California Consumer Privacy Act Means for Marketers and Marketing

Just a month after the EU General Data Protection Regulation became effective, California enacted the Consumer Privacy Act of 2018, which has caused almost as much concern among organizations doing business there. Given the...more

The Likelihood of Company Executives Being Fired Post-Data Breach – It Isn’t Pretty

In April 2018, Verizon released the 11th edition of its Data Breach Investigations Report. As usual, the Verizon DBIR contained interesting data points culled from more than 53,000 incidents and 2,216 confirmed data breaches....more

Are You Ready for the General Data Protection Regulation?

The scope and scale of Equifax’s recent data breach and Facebook’s ongoing data-sharing travails have forced companies around the world to consider, perhaps more than ever before, the legality of how they obtain and process...more

22 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide