On April 27th, Washington State’s governor signed the Washington State My Health My Data Act—a law the legislature nominally designed to increase healthcare privacy. But it does more than that. The law uses sweeping...more
For what seemed like an eternity (okay, just a couple years), the California Consumer Privacy Act was the only game in town when it came to state-level, comprehensive privacy legislation. Sure, we saw many other states...more
The New and Improved CCPA -
Finally, after a tense week of watching support for Prop. 24 (the California Privacy Rights Act) wax back and forth between 56% of the vote and 56% of the vote, it seems appropriate to finally...more
Beazley Cites Ransomware as the Top Threat for Cyber-Attacks in 2020 -
Insurance provider Beazley has issued a report (free registration required) detailing the landscape of cyber-attacks over the past year. The report...more
3/31/2020
/ Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Security ,
Health Care Providers ,
Information Technology ,
Malware ,
Personally Identifiable Information ,
Ransomware ,
Risk Management ,
Vulnerability Assessments
Shook Weighs in on Updated CCPA Regulations -
In response to extensive public comment, the California Attorney General’s office released modified draft regulations under the CCPA on February 7. Shook has provided initial...more
3/10/2020
/ Biometric Information ,
Board of Directors ,
C-Suite Executives ,
California Consumer Privacy Act (CCPA) ,
Class Action ,
Consumer Privacy Rights ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Data Protection Commissioner ,
Data Security ,
EHealth ,
EIOPA ,
EU ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Security Rule ,
International Data Transfers ,
Ireland ,
LabMD ,
New Guidance ,
OCR ,
Opt-Outs ,
Personal Information ,
PHI ,
Popular ,
Privacy Laws ,
Proposed Legislation ,
Right to Delete ,
Third-Party Service Provider ,
Underwriting
California AG Updates CCPA Regulations -
The long wait—two excruciating months from the end of initial public comment—is over. The California Attorney General’s office, in a bid to ruin the weekend for privacy...more
2/12/2020
/ California Consumer Privacy Act (CCPA) ,
Comment Period ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Personal Information ,
Privacy Laws ,
Public Comment ,
Regulatory Agenda ,
Regulatory Requirements ,
Rulemaking Process ,
State Attorneys General
States Consider Privacy and Data Security Legislation -
It’s that time of year again, when we see a flood of legislative activity at the state level on privacy and data security laws. A couple of recent examples are below....more
1/30/2020
/ Class Action ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Breach ,
Data Management ,
Data Privacy ,
Data Protection ,
Data Security ,
Equifax ,
EU-US Privacy Shield ,
Expedia ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Google ,
Information Commissioner's Office (ICO) ,
Information Governance ,
Legislative Agendas ,
Marriott ,
Motion to Dismiss ,
Online Safety for Children ,
Orbitz ,
Personal Data ,
Privacy and Electronic Communications Regulation 2003 (PECR). ,
Proposed Legislation ,
Regulatory Violations ,
Settlement ,
State and Local Government ,
UK
California Adds Biometric Restrictions to Data-Breach Law, Potentially Creating a De Facto Biometric Privacy Law
Subject to the governor’s signature, California’s breach-notification law will gain additional requirements...more
9/25/2019
/ Biometric Information ,
Biometric Information Privacy Act ,
California Consumer Privacy Act (CCPA) ,
Consent ,
COPPA ,
Data Breach ,
Data Collection ,
Data Privacy ,
EU ,
EU-US Privacy Shield ,
FCC ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Interactive Advertising Bureau ,
ISO ,
Legislative Agendas ,
Personal Data ,
Personally Identifiable Information ,
Proposed Legislation ,
Robocalling ,
Settlement Agreements ,
TCPA ,
Transparency ,
YouTube
The Legal 500 Adds Shook to Top Rankings in Cyber Law-
The Legal 500 United States has again recognized Shook, Hardy & Bacon as one of the premier litigation firms in the country, giving top marks to a variety of practices,...more
7/10/2019
/ Amended Rules ,
Biometric Information Privacy Act ,
California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Data Privacy ,
Employees ,
Exceptions ,
Improper Venue ,
Internet Service Providers (ISPs) ,
New Rules ,
Opt-In ,
Popular ,
Privacy Laws ,
Private Right of Action ,
Proposed Amendments ,
Proposed Legislation ,
Railway Labor Act ,
Southwest Airlines ,
State Data Breach Notification Statutes
Maine Bill Requires ISPs to Obtain Opt-In Consent from Customers -
The Maine legislature has passed a bill that requires internet service providers (ISPs) operating in Maine to obtain express, affirmative consent from...more
6/11/2019
/ Class Action ,
Consent ,
Data Breach ,
Data Privacy ,
Data Security ,
Data-Sharing ,
FCC ,
Health Insurance ,
HIPAA Breach ,
Information Technology ,
Internet Service Providers (ISPs) ,
Legislative Agendas ,
Opt-In ,
Opt-Outs ,
Pending Legislation ,
Personal Data ,
Popular ,
Premera Blue Cross ,
Robocalling ,
Settlement Agreements ,
Standing ,
State Data Breach Notification Statutes ,
Statutory Interpretation
The California Consumer Privacy Act: The Next Frontier -
The California Consumer Privacy Act (CCPA) has been called the beginning of America’s GDPR. As the most comprehensive privacy law in the United States, entities...more
6/5/2019
/ Algorithms ,
California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Damages ,
Data Breach ,
Data Privacy ,
Fines ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Breach ,
Legislative Agendas ,
Personal Data ,
Personally Identifiable Information ,
State and Local Government ,
State Data Breach Notification Statutes ,
TCPA
Florida Introduces BIPA Legislation -
A Florida state senator has introduced an identical version of the Illinois Biometric Information Privacy Act (BIPA)....more
3/25/2019
/ Aetna ,
Biometric Information ,
Biometric Information Privacy Act ,
California Consumer Privacy Act (CCPA) ,
CNIL ,
Competition ,
COPPA ,
Data Breach ,
Data Collection ,
Data Privacy ,
Enforcement Actions ,
Facial Recognition Technology ,
Federal Trade Commission (FTC) ,
Fingerprints ,
General Data Protection Regulation (GDPR) ,
Legislative Agendas ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Proposed Amendments ,
Proposed Legislation ,
State and Local Government