In May of 2022, Connecticut joined a growing list of U.S. states passing privacy regulations when it signed the Connecticut Data Privacy Act (CTDPA) into law.
The CTDPA officially went into effect in July 2023. On...more
Startups face unique challenges that can impact their success and sustainability. Obstacles such as financial constraints (inadequate funding or limited cash flow) and resource constraints often result in small teams having...more
10/17/2023
/ Compliance ,
Data Collection ,
Data Privacy ,
Data Protection Impact Assessments (DPIAs) ,
Data Storage ,
Databases ,
Due Diligence ,
General Data Protection Regulation (GDPR) ,
Personal Information ,
Popular ,
Privacy Laws ,
Regulatory Requirements ,
Risk Management ,
Risk Mitigation ,
Software ,
Startups ,
Sustainability
This is the third article in a three-part series whereby Ankura privacy experts analyzed the 40 examples of alleged non-compliance with the California Consumer Privacy Act (CCPA) published by the California Office of Attorney...more
The California Office of Attorney General (OAG) is responsible for enforcing the California Consumer Privacy Act (CCPA) and began sending notifications of alleged non-compliance to companies on July 1, 2020. In June 2021,...more
12/15/2022
/ California ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Data Privacy ,
Disclosure Requirements ,
Do Not Sell ,
Enforcement Actions ,
Noncompliance ,
Notifications ,
Opt-Outs ,
State Attorneys General
As data privacy regulations have become increasingly commonplace in the last decade, organizations have had to strategically assess how they collect, process, store, and sell consumer data. To better equip themselves for this...more
10/4/2022
/ Automation Systems ,
Compliance ,
Cookie Banners ,
Data Collection ,
Data Privacy ,
Data Protection Impact Assessments (DPIAs) ,
Data Security ,
Data Subject Access Requests ,
Personal Information ,
Privacy Laws ,
Risk Assessment ,
Technology
As data privacy regulatory obligations continue to expand, more and more organizations are integrating privacy centers within their public-facing websites. Privacy Centers are portals embedded within the organizations’...more
The Sedona Conference is a widely known institute that is focused on the study of law and policy in many areas including Information Governance (IG). The Sedona Conference Commentary on Information Governance provides 11 IG...more
7/6/2022
/ Audits ,
Compliance ,
Confidential Information ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Mapping ,
Data Privacy ,
Data Protection ,
Information Governance ,
Personal Information ,
Standard of Conduct
8 11 The emergence of data protection laws has given greater meaning to how customers and businesses view consent in the context of collecting personal data from consumers. In recent years, regulations such as the General...more
The first major consumer-focused privacy regulation in the U.S., the California Consumer Privacy Act (CCPA), came into effect on January 1st, 2020, which seems like a lifetime ago. Now it’s April 2022, and there are several...more
Recent data privacy regulations like the CPRA in California, the CPA in Colorado, and the CDPA in Virginia will dramatically change how we acquire, store, manage and dispose of information in our organizations. In most major...more
4/28/2022
/ California Consumer Privacy Act (CCPA) ,
CDPA ,
Compliance ,
Data Privacy ,
Data Storage ,
Electronic Records ,
General Data Protection Regulation (GDPR) ,
Information Management ,
New Regulations ,
Personal Information ,
Risk Management ,
State Data Privacy Laws
A new trend in privacy and cybersecurity laws is the introduction of safe harbor clauses for aligning data protection controls to recognized data privacy and cybersecurity frameworks.
OHIO HB376: In July 2021, Ohio...more
8/4/2021
/ California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
NIST ,
Popular ,
Privacy Laws ,
Proposed Legislation ,
Safe Harbors
In an era of increased M&A transactions, organizations must understand the risks and potential liabilities associated with the personal information they obtain on their customers, vendors, and employees....more
6/8/2021
/ Acquisition Agreements ,
Corporate Sales Transactions ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Retention ,
Due Diligence ,
Funding Opportunities ,
Information Technology ,
Investors ,
Merger Agreements ,
Seed Financing