The California Attorney General sent a sweep of notices to businesses with loyalty programs alleging noncompliance with the California Consumer Privacy Act.
Why are loyalty programs implicated in the California Consumer...more
Best Practices for the Virginia Consumer Data Protection Act -
The Virginia Consumer Data Protection Act (VCDA) Working Group of the Joint Commission on Technology and Science released its final report on best practices...more
12/10/2021
/ CDPA ,
CNIL ,
Consumer Financial Protection Bureau (CFPB) ,
Consumer Privacy Rights ,
Cybersecurity Information Sharing Act (CISA) ,
Data Breach ,
Data Privacy ,
Data Security ,
Employee Monitoring ,
Enforcement Actions ,
ENISA ,
European Data Protection Board (EDPB) ,
European Economic Area (EEA) ,
Fair Credit Reporting Act (FCRA) ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Privacy Laws ,
Ransomware ,
UNESCO ,
Virginia
FCC Seeks Public Comment on the Current and Future Regulation of the “Internet of Things” -
The FCC is requesting public comment in a proceeding that will help determine the scope and nature of regulation of the “Internet of...more
10/13/2021
/ Artificial Intelligence ,
Biometric Information Privacy Act ,
California Consumer Privacy Act (CCPA) ,
Class Action ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection Impact Assessments (DPIAs) ,
Enforcement Actions ,
FCC ,
General Data Protection Regulation (GDPR) ,
Hacking Back ,
Internet of Things ,
Malware ,
Mobile Apps ,
NIST ,
Notice of Proposed Rulemaking (NOPR) ,
Opt-Outs ,
Popular ,
Public Comment ,
Securities and Exchange Commission (SEC) ,
Securities Fraud ,
Settlement ,
Software
In Blackbaud Inc. Customer Data Security Breach Litigation, No. 3:20-mn-02972 (D.S.C. Aug. 12, 2021), a federal judge found that defendant, Blackbaud Inc. was subject to the CCPA despite its motion to dismiss asserting that...more
9/22/2021
/ California ,
California Consumer Privacy Act (CCPA) ,
China ,
Class Action ,
COPPA ,
Cyber Attacks ,
Data Breach ,
Data Collection ,
Enforcement Actions ,
EU ,
Federal Trade Commission (FTC) ,
International Data Transfers ,
Personal Information Protection Law (PIPL) ,
Securities and Exchange Commission (SEC) ,
Settlement ,
Standard Contractual Clauses ,
UK
2021 is off to a strong start in privacy legislation with Virginia passing the second state comprehensive consumer privacy law in the US.
Who Is Covered? -
The Virginia Consumer Data Protection Act (CDPA) applies to...more
3/8/2021
/ Consent Agreements ,
Consumer Privacy Rights ,
Data Collection ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
Gramm-Leach-Blilely Act ,
Personal Data ,
Privacy Laws ,
Targeted Digital Advertising ,
Virginia
ICO has resumed its investigation into real-time bidding and the AdTech industry, as well as its review of the role of data brokers in the AdTech ecosystem.
Companies using real-time bidding for advertising should take...more
As comparison sites become more popular, the fine print becomes increasingly important for both consumers and companies.
As one recent US Federal Trade Commission (FTC) settlement reminds us, companies that want to boast...more
The FTC alleged that UrthBox did not disclose that some consumers received compensation, including free snack boxes, to post positive reviews.
In addition, UrthBox offered “free” trial boxes during this time that resulted...more
Inside the Privacy Shield Annual Review -
Dozens of senior US and EU government officials were joined by officials from data protection authorities in Austria, Bulgaria, France, Germany and Hungary to discuss whether the...more
10/9/2019
/ Audio Recording ,
California Consumer Privacy Act (CCPA) ,
Credit Cards ,
Data Breach ,
Data Collection ,
Data Protection Authority ,
Email ,
Enforcement Actions ,
Equifax ,
EU ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
Hackers ,
Identity Theft ,
Personal Information ,
Popular ,
Schrems I & Schrems II ,
Settlement ,
Software ,
Spam ,
Technology Sector ,
UK ,
UK Employment Appeal Tribunal ,
Unfair Dismissal
Federal US News -
FTC Takes Action Against Companies Falsely Claiming Compliance With International Privacy Agreements -
The FTC reached a settlement with a background screening company over allegations it falsely claimed...more
7/16/2019
/ Accreditation ,
Advertising ,
Annual Reports ,
Asia Pacific ,
Automotive Industry ,
California Consumer Privacy Act (CCPA) ,
Code of Conduct ,
Consumer Information ,
Consumer Privacy Rights ,
Cookies ,
Cross-Border Transactions ,
Cybersecurity ,
Data Breach ,
Data Security ,
Enforcement Actions ,
EU ,
EU-US Privacy Shield ,
European Data Protection Board (EDPB) ,
False Statements ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Internet Service Providers (ISPs) ,
Legal Representatives ,
New Rules ,
NIST ,
Popular ,
Prior Express Consent ,
Privacy Laws ,
Private Right of Action ,
Proposed Legislation ,
Right of Access ,
Right to Be Forgotten ,
Right to Control ,
Settlement ,
State Legislatures ,
Targeted Digital Advertising ,
Third-Party Service Provider ,
UK ,
UK ICO
The Federal Trade Commission (FTC) recently released updated data security guidance in connection with a proposed settlement with LightYear Dealer Technologies, LLC (dba DealerBuilt), a service provider for the auto dealer...more
6/26/2019
/ Automotive Industry ,
Car Dealerships ,
Data Breach ,
Data Security ,
Data Storage ,
Electronically Stored Information ,
Encryption ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Gramm-Leach-Blilely Act ,
Personally Identifiable Information ,
Settlement ,
Third-Party Service Provider ,
Unfair or Deceptive Trade Practices