Is more information always better? If someone wants to limit the use of information, and others want to expose, discuss or publicize it, who wins?...more
Your business complies with the General Data Protection Regulation ("GDPR") and/or Turkish Personal Data Protection Law numbered 6698 and its secondary legislation ("PDPL"); but does it comply with the California Consumer...more
Probably not. The term “personal information” is defined by the CCPA as “information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with...more
The European Court of Justice recently limited the “right to be forgotten” in a landmark decision for online privacy law. The decision arises from a dispute between Commission nationale de l'informatique et des libertés...more
Consumer privacy laws enacted on the other side of the country could have big implications for businesses here in North Carolina. On January 1, 2020, the California Consumer Privacy Act (CCPA) will take effect. This is a...more
In this month's edition of our Privacy & Cybersecurity Update, we examine five amendments to the California Consumer Privacy Act, the EU Court of Justice's rulings on the "Right to Be Forgotten" and what qualifies as a joint...more
Earlier this week, the Court of Justice of the European Union, perhaps for the first time, drew a territorial limitation to the requirements imposed under the General Data Protection Regulation (‘GDPR’). The court held that...more
No. The scope of the right to be forgotten under the CCPA and the GDPR differ in three important ways. First, the CCPA states only that a business may have to delete the information that it obtained “from” the consumer....more
No. The CCPA states only that a business may have to delete the information that it obtained “from” the consumer that submits the right to be forgotten request. As a result, if a business obtained information from two...more
Federal US News - FTC Takes Action Against Companies Falsely Claiming Compliance With International Privacy Agreements - The FTC reached a settlement with a background screening company over allegations it falsely claimed...more
The California Consumer Privacy Act ("CCPA") was enacted in early 2018 as a political compromise to stave off a poorly drafted, and plaintiff’s friendly ballot initiative. Although the CCPA is scheduled to go into force in...more
The California Consumer Privacy Act ("CPPA") was enacted in early 2018 as a political compromise to stave off a poorly drafted, and plaintiff’s friendly ballot initiative. Although the CPPA is scheduled to go into force in...more
There are significant differences between the version of the CCPA that was first proposed as a ballot initiative in 2017 and the version of the CCPA that was ultimately passed by the state legislature in 2018. In general, the...more
California recently enacted the California Consumer Privacy Act (“CCPA”) which calls for companies to fundamentally change certain practices relating to the collection and use of personal information. Similar to the European...more
The California legislature unanimously approved and California Governor Jerry Brown signed into law the California Consumer Privacy Act of 2018 (CCPA) on June 28, 2018. The CCPA is arguably the most far-reaching data...more
On June 28, 2018, California passed a new privacy law that is one of the most stringent consumer protection privacy laws in the nation. The California Consumer Privacy Act of 2018 (Act) introduces onerous new requirements and...more
On June 28, 2018, California enacted the California Consumer Privacy Act of 2018 (“CCPA”). CCPA, unlike any other law, requires companies to honor specific privacy rights of California consumers granted under CCPA....more
The number of companies and organizations issuing transparency reports is increasing. In general, there are no official standards governing what these reports contain but companies’ reports often incorporate information on...more
Recently, the Office of the Privacy Commissioner of Canada (OPC) released an important draft Position on Online Reputation (paper). The paper takes the position that current federal privacy legislation, the Personal...more
Earlier this week, on December 15, 2015, EU officials approved the text of new data privacy regulations after nearly four years of discussions. The EU-wide bill, which will supersede what is now known as the EU Data...more
On 13 May 2014 the Court of Justice of the European Union (CJEU) issued a judgment which Google called a “landmark ruling” (Google v. Costeja Gonzalez case, C-131/12). The court held, based on the 95/46 Directive on...more
While the last refrains of “should old acquaintance be forgot” fade away from New Years’ Eve celebrations, 2014 may be remembered as the year of the “right to be forgotten” in light of an EU privacy ruling last May. Below we...more
In This Issue: - EU Issues Guidelines on ‘Right to be Forgotten’ - FFIEC Observations on Bank Cybersecurity Provides Important Guidelines for Every Industry - Remarks by Comptroller Curry Highlight OCC...more
The European Court of Justice (ECJ) issued a quite surprising decision against Google which has significant implications for global companies....more