Colorado added to the United States’ patchwork approach to data privacy regulation this week. On July 7, Colorado Governor Jared Polis signed into law the Colorado Privacy Act (“CPA”), a sweeping law that creates substantial...more
On June 4, 2021, the European Commission adopted new sets of Standard Contractual Clauses (New SCCs) that organizations can use when transferring personal data protected by the General Data Protection Regulation (GDPR) to...more
Virginia is on the brink of joining California as the second state with a broad privacy law that restricts how companies can use and disclose personal information. The Virginia Consumer Data Protection Act (CDPA) recently...more
The Court of Justice of the European Union (ECJ) recently declared that the EU-U.S. Privacy Shield, used by thousands of businesses to transfer personal data between the EU and U.S., was invalid. [Case C-311/18, Data...more
What can organizations learn from the first year of enforcement of the European Union’s General Data Protection Regulation (GDPR)? Quite a bit, if you pay attention to what the EU government regulators are doing....more
5/30/2019
/ Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Processors ,
Data Protection ,
EU ,
EU Data Protection Laws ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Popular
In a unanimous ruling that is sure to become a landmark in state litigation over data breaches, the Pennsylvania Supreme Court on November 21 held that “an employer has a legal duty to exercise reasonable care to safeguard...more
After coming into effect on May 25, 2018, the European Union’s General Data Protection Regulation (GDPR) poses a compliance challenge to U.S. organizations that handle or control personal data on people who are in the E.U....more