Colorado Department of Law Issues Draft CPA Revisions -
On December 22, the Colorado Department of Law issued updates to the draft Colorado Privacy Act (CPA) rules. These revisions build on written comments and feedback from...more
1/13/2023
/ Biometric Information Privacy Act ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Colorado ,
COPPA ,
Data Security ,
Employee Definition ,
EU ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Mobile Apps ,
New Guidance ,
Penalties ,
Personal Data ,
Popular ,
Privacy Laws ,
Rulemaking Process ,
Standard Contractual Clauses ,
UK
California Exemptions for B2B and Employee Data Set To Expire -
With August 31 marking the last day of the legislative session, the California legislature’s failure to extend business-to-business and employee data exemptions...more
9/19/2022
/ B2B Organizations ,
California ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
CARU ,
CIPA ,
Cybersecurity ,
Dress Codes ,
Enforcement ,
Information Commissioner's Office (ICO) ,
New Guidance ,
Personal Data ,
Popular ,
Rulemaking Process ,
U.S. Treasury ,
Wiretapping
The Federal Trade Commission (FTC) and Department of Justice (DOJ) recently ordered Twitter to pay $150 million for violating a 2011 FTC order that prohibited the company from misrepresenting its privacy and data security...more
Colorado Attorney General Seeks Rulemaking Comments for the Colorado Privacy Act -
With the Notice of Proposed Rulemaking set for fall 2022, Colorado’s Attorney General office is currently inviting preliminary comments for...more
4/8/2022
/ Artificial Intelligence ,
Chile ,
China ,
CNIL ,
Colorado ,
Cyber Incident Reporting ,
EU ,
European Data Protection Board (EDPB) ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Information Commissioner's Office (ICO) ,
NIST ,
Personal Data ,
Risk Management ,
Rulemaking Process ,
Social Media ,
State Privacy Laws
United Kingdom New Standard Contractual Clauses Submitted to Parliament -
The United Kingdom has finalized its new International Data Transfer Agreement and Addendum to the new EU standard contractual clauses. Subject to...more
2/17/2022
/ Brazil ,
California Consumer Privacy Act (CCPA) ,
Cookies ,
COPPA ,
Customer-Loyalty Programs ,
Cybersecurity ,
Data Protection ,
EU ,
European Data Protection Board (EDPB) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
NIST ,
Personal Data ,
Popular ,
Right of Access ,
Standard Contractual Clauses ,
UK
Effective January 1, 2022, California Senate Bill 41, the Genetic Information Privacy Act (GIPA), imposes requirements on the collection, use, and disclosure of genetic data collected or derived from direct-to-consumer...more
Colorado passes its own omnibus state privacy law. Although there are overlaps with the California and Virginia privacy laws, the Colorado Privacy Act has its own distinctions and variations, namely a longer cure period and...more
6/18/2021
/ California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
CDPA ,
Colorado ,
Consent ,
Corporate Counsel ,
Data Controller ,
Data Privacy ,
Data Profiling ,
Opt-Outs ,
Personal Data ,
Privacy Laws ,
Targeted Digital Advertising
The Federal Trade Commission (FTC) continues to put emphasis on the importance of corporate board involvement in privacy and data security.
Corporate Boards: Don’t Underestimate Your Role in Data Security Oversight -
The...more
5/20/2021
/ Apple ,
Article III ,
Artificial Intelligence ,
Board of Directors ,
Data Privacy ,
Data Protection ,
Data Security ,
Disclosure Requirements ,
Electronic Protected Health Information (ePHI) ,
EU ,
European Commission ,
Federal Trade Commission (FTC) ,
Google ,
Identity Theft ,
Latin America ,
Mobile Apps ,
New Rules ,
ONC ,
Personal Data ,
Popular ,
SCOTUS ,
Standing
In April 2021, the Second Circuit issued a decision recognizing an increased risk of future, unrealized identity theft or fraud as a basis for establishing Article III standing.
Background -
The case, McMorris v. Carlos...more
2021 is off to a strong start in privacy legislation with Virginia passing the second state comprehensive consumer privacy law in the US.
Who Is Covered? -
The Virginia Consumer Data Protection Act (CDPA) applies to...more
3/8/2021
/ Consent Agreements ,
Consumer Privacy Rights ,
Data Collection ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
Gramm-Leach-Blilely Act ,
Personal Data ,
Privacy Laws ,
Targeted Digital Advertising ,
Virginia
ICO has resumed its investigation into real-time bidding and the AdTech industry, as well as its review of the role of data brokers in the AdTech ecosystem.
Companies using real-time bidding for advertising should take...more
The Commission nationale de l'informatique et des libertés (CNIL) is the national data protection authority in France.
Recently, it announced new guidance on cookies and online trackers (Guidelines). Operators of...more
Important information for brand protection, including recent Arent Fox News on advertising and marketing issues, as well as headlines that matter for privacy and data security.
FTC Investigates Financial Products Review Site...more
3/13/2020
/ Advertising ,
Artificial Intelligence ,
California Consumer Privacy Act (CCPA) ,
Consumer Financial Products ,
Data Breach ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
Financial Services Industry ,
FTC Endorsement Guidelines ,
Information Commissioner's Office (ICO) ,
NARB ,
NIST ,
Personal Data ,
Popular
As security risks continue to be at the forefront of legislators’ agendas across the country, New York has joined the growing roster of states pressing businesses to develop more robust breach procedures. Originally proposed...more
10/16/2019
/ Biometric Information ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Security ,
New Legislation ,
Personal Data ,
Personal Information ,
Security and Privacy Controls ,
SHIELD Act ,
State Data Breach Notification Statutes
We’ve all seen the funny faces appearing across the internet as friends and family use the FaceApp to see what they may look like in 30 to 50 years. The resulting images are wrinkled and gray, but the trade made—instead of...more
8/1/2019
/ Artificial Intelligence ,
Biometric Information Privacy Act ,
Consent ,
Data Collection ,
Facial Recognition Technology ,
Geolocation ,
IP License ,
Mobile Apps ,
National Security ,
Personal Data ,
Personal Information ,
Privacy Concerns ,
Privacy Policy ,
Terms of Use