Gregory Szewczyk

Gregory Szewczyk

Ballard Spahr LLP

Contact

Readers' Choice Awards

Data Privacy
Data Privacy
View Bio
RSS

Latest Publications

Share:

Recent Colorado Ruling Strengthens Press Shield Law Rights

A district court in Boulder, Colorado, recently applied Colorado's Press Shield Law to a subpoena for a reporter to testify at trial—even though the party issuing the subpoena only wanted to question the witness about...more

3/8/2019  /  Confidential Information , Freedom of the Press , Journalism , Journalists , News Stories , Press Shield Laws , Privileged Communication , Subpoenas

Illinois Supreme Court: No ‘Actual Harm’ Required for Biometric Information Privacy Act Claims

The Illinois Supreme Court held on January 25, 2019, that plaintiffs filing suit under the Biometric Information Privacy Act—which regulates how private entities disclose and discard biometric identifiers—do not need actual...more

1/30/2019  /  Amusement Parks , Article III , Biometric Information , Biometric Information Privacy Act , Class Action , Data Collection , Data Privacy , Fingerprints , IL Supreme Court , Injury-in-Fact , Liquidated Damages , Personal Data , Personally Identifiable Information , Standing , Statutory Violations

No Actual Damages Required to Sue Under Illinois Biometric Information Privacy Law

The Illinois Supreme Court held on January 25, 2019, that plaintiffs filing suit under the Biometric Information Privacy Act—which regulates how private entities disclose and discard biometric identifiers—do not need actual...more

1/29/2019  /  Amusement Parks , Article III , Biometric Information , Biometric Information Privacy Act , Data Collection , Data Privacy , Facial Recognition Technology , Fingerprints , IL Supreme Court , Injury-in-Fact , Liquidated Damages , Personal Data , Personally Identifiable Information , Standing , Statutory Violations

Analyzing the California Consumer Privacy Act’s Private Right of Action

For good reason, there has been much discussion about the new privacy rights created by the California Consumer Privacy Act of 2018 (CCPA), which becomes effective January 1, 2020. ...more

11/21/2018  /  California Consumer Privacy Act (CCPA) , Consumer Privacy Rights , Cybersecurity , Data Collection , Data Privacy , Data Protection , New Legislation , Personally Identifiable Information , Popular , Privacy Laws , Private Right of Action

California Poised to Enact Internet of Things Information Security Law

California is once again poised to set the standard for privacy and data security by enacting the first state law directed at securing Internet of Things (IoT) devices. The law has passed the state legislature and is awaiting...more

9/7/2018  /  Connected Items , Cybersecurity , Data Protection , Information Technology , Internet of Things , Manufacturers , Pending Legislation , Popular , Risk Management , Security Standards , State and Local Government

California Passes Legislation Significantly Changing Privacy Requirements for Entities Doing Business in the State

As we discussed in our prior alert, California voters had been poised to consider a citizen-initiated ballot measure that would have significantly expanded the privacy rights of California citizens and provided substantial...more

6/29/2018  /  Consumer Rights Directive , Disclosure Requirements , Legislative Agendas , New Legislation , Notice Requirements , Online Platforms , Personal Data , Privacy Policy , Regulatory Oversight , Regulatory Requirements , State and Local Government

California Voters Likely to Consider Enacting GDPR-Like Privacy Law in November

With more than double the number of required signatures well ahead of the verification deadline late this month, the citizen-initiated measure "The California Consumer Privacy Act of 2018" appears headed for the statewide...more

6/6/2018  /  Ballot Measures , Covered Entities , Data Protection , General Data Protection Regulation (GDPR) , Opt-Outs , Personal Data , Personally Identifiable Information , Right To Know , State and Local Government , Strict Liability

Colorado Enacts Groundbreaking Privacy and Cybersecurity Legislation

Colorado has enacted groundbreaking privacy and cybersecurity legislation that will require covered entities to implement and maintain reasonable security procedures, dispose of documents containing confidential information...more

5/31/2018  /  Covered Entities , Cybersecurity , Data Privacy , New Legislation , Personally Identifiable Information , Popular , Risk Management , State and Local Government , State Data Breach Notification Statutes , Third-Party Service Provider

Arizona Strengthens and Expands Data Breach Notification Law

The Arizona Legislature has significantly expanded and strengthened the state's data breach notification law. The legislation was signed by Arizona Governor Doug Ducey on April 11, 2018....more

4/18/2018  /  Cyber Attacks , Cybersecurity , Data Breach , Data Protection , Hackers , New Legislation , Notice Requirements , Personally Identifiable Information , Popular , Risk Management , State and Local Government , State Data Breach Notification Statutes

What Arizona Companies Need to Know About Arizona Cybersecurity Law

Given the nearly daily reports of data breaches, ransomware attacks and phishing exploits affecting entities of all sizes, Arizona entities should be aware that Arizona law may require them to provide notice to employees,...more

3/22/2018  /  Cyber Attacks , Cybersecurity , Data Breach , Data Protection , Hackers , New Legislation , Personally Identifiable Information , Popular , Risk Management , State and Local Government , State Data Breach Notification Statutes

FTC Explains Evolution of COPPA in Live Twitter Chat

On March 6, 2018, the FTC hosted a live Twitter chat to mark the twentieth anniversary of the Children’s Online Privacy Protection Act (COPPA)....more

3/14/2018  /  Connected Items , COPPA , Data Collection , Federal Trade Commission (FTC) , Internet of Things , Mobile Apps , Online Safety for Children , Personally Identifiable Information , Safe Harbors

Oregon, New York, Alabama, and Rhode Island Join List of States Considering Data Breach Legislation Post-Equifax

Any entity that does business in these states or maintains confidential information of their residents should monitor the proposed data breach legislation discussed below: Oregon, New York, Alabama, and Rhode Island....more

3/5/2018  /  Corporate Counsel , Cyber Attacks , Cybersecurity , Data Breach , Data Protection , Equifax , Hackers , Legislative Agendas , Personally Identifiable Information , Popular , Preemption , Proposed Legislation , State and Local Government , State Data Breach Notification Statutes

Update on Colorado’s Proposed Privacy and Cybersecurity Legislation

As we first reported in our January 22, 2018, alert, the Colorado legislature is considering legislation that, if enacted, would significantly change Colorado privacy and data security law....more

2/19/2018  /  Cybersecurity , Data Privacy , GLBA Privacy , Health Insurance Portability and Accountability Act (HIPAA) , Personally Identifiable Information , Proposed Legislation , State and Local Government , State Data Breach Notification Statutes

Colorado Legislature Considers Sweeping Privacy and Cybersecurity Legislation

A bipartisan group of Colorado legislators proposed legislation that, if enacted, would significantly change the requirements for how Colorado entities protect, transfer, secure, and dispose of documents containing “personal...more

1/23/2018  /  Cybersecurity , Data Breach , Data Security , Legislative Agendas , Personally Identifiable Information , Policies and Procedures , Popular , Proposed Legislation , State and Local Government , State Data Breach Notification Statutes

Arizona Legislature Considers Strengthening Data Breach Notification Law

The Arizona State Legislature is considering proposed legislation that, if enacted, would significantly change the requirements for how Arizona entities respond to data breaches....more

1/17/2018  /  Breach Notification Rule , Corporate Counsel , Cyber Attacks , Cybersecurity , Data Breach , Data Protection , Hackers , Personally Identifiable Information , Proposed Legislation , State and Local Government

Washington A.G. Sues Uber in First Enforcement Action Under Revised Data Breach Law

The State of Washington's Attorney General filed a complaint against Uber Technologies, Inc., (Uber) this week related to the 2016 hack that exposed the personal data of 57 million riders and drivers. The suit is the first...more

11/30/2017  /  Cyber Attacks , Cyber Crimes , Data Breach , Hackers , Pending Litigation , Personally Identifiable Information , Popular , Ridesharing , Sharing Economy , Uber

Eighth Circuit Issues Two Class Action Data Breach Rulings

In the span of just nine days, the U.S. Court of Appeals for the Eighth Circuit issued two rulings in class actions involving data breaches—one breach in 2013 at brokerage firm Scottrade and another in 2014 at grocery stores...more

9/5/2017  /  Article III , Breach of Contract , Brokerage Accounts , Class Action , Corporate Counsel , Cyber Attacks , Data Breach , Federal Rule 12(b)(6) , Grocery Stores , Hackers , Injury-in-Fact , Personally Identifiable Information , Popular , Scottrade , Standing

Uber Settles FTC Dispute Over Consumer Data Privacy and Security Allegations

There are several key takeaways from a 20-year proposed consent order agreed to by Uber Technologies, Inc. (Uber) and the Federal Trade Commission (FTC)...more

8/21/2017  /  Antitrust Provisions , Antitrust Violations , Cloud Storage , Corporate Counsel , Customer Privacy , Data Privacy , Data Security , Federal Trade Commission (FTC) , Personally Identifiable Information , Sharing Economy , Uber

Maryland Amends Data Breach Notification Law

The Maryland General Assembly recently amended the Maryland Personal Information Protection Act to expand the definition of personal information, provide a 45-day timeframe for providing notice of a breach, allow for...more

8/4/2017  /  Biometric Information , Cybersecurity , Data Breach , Data Protection , Health Insurance Portability and Accountability Act (HIPAA) , New Legislation , Notification Requirements , Personally Identifiable Information , Popular

Colorado District Court Dismisses Data Breach Class Action Against Noodles & Company

The U.S. District Court for the District of Colorado recently dismissed a proposed class action lawsuit filed by financial institutions relating to a 2016 data breach that involved hundreds of Noodles & Company (Noodles)...more

7/27/2017  /  Banking Sector , Choice-of-Law , Class Action , Corporate Counsel , Cyber Attacks , Data Breach , Economic Loss Doctrine , Financial Institutions , PCI-DSS Standard , Personally Identifiable Information , Popular , Restaurant Industry

Colorado Division of Securities Publishes Final Cybersecurity Rules

The Colorado Division of Securities (Division) has published final cybersecurity rules applicable to broker-dealers and investment advisers. The Colorado Attorney General's office has 20 days to write an opinion on the rules,...more

5/23/2017  /  Broker-Dealer , Cybersecurity , Data Protection , Electronic Communications , Final Rules , Financial Markets , Financial Services Industry , Personally Identifiable Information , Popular , Risk Management

SEC Emphasizes Cybersecurity Preparedness in Wake of Global Ransomware Attack

The U.S. Securities and Exchange Commission's Office of Compliance Inspections and Examinations (OCIE) has issued a Risk Alert in the wake of the widespread WannaCry ransomware attack that has inflicted hundreds of thousands...more

5/19/2017  /  Broker-Dealer , Cyber Attacks , Cybersecurity , Data Breach , Hackers , Investment Management , Malware , OCIE , Phishing Scams , Ransomware , Risk Alert , Risk Management , Securities and Exchange Commission (SEC)

Colorado Proposes Cybersecurity Rules for Investment Advisers, Broker-Dealers

The Colorado Division of Securities recently issued proposed rules directed at establishing cybersecurity requirements for broker-dealers and investment advisers. The proposed rules were issued only a month after New York...more

4/27/2017  /  Broker-Dealer , Cybersecurity , Data Protection , Electronic Communications , Financial Services Industry , Investment Adviser , Investment Products , Popular , Risk Assessment , Securities and Exchange Commission (SEC)

New Mexico Becomes 48th State to Enact Data Breach Notification Law

New Mexico recently became the 48th state to enact a data breach notification law. This continues the accelerated pace of state data breach legislative activity in the last two years. Since 2015, at least 41 states have...more

4/20/2017  /  Cybersecurity , Data Breach , Data Security , New Legislation , Personally Identifiable Information , Risk Management , State Data Breach Notification Statutes

Eighth Circuit Remands Proposed Settlement in Target Data Breach Class Action

The Eighth Circuit Court of Appeals has remanded a $10 million settlement in the Target data breach class action on the grounds that the district court had not rigorously analyzed the propriety of the class...more

2/3/2017  /  Appeals , Class Action , Class Certification , Credit Cards , Cyber Attacks , Cyber Crimes , Cybersecurity , Data Breach , Data Protection , Debit Cards , Hackers , Identity Theft , Personally Identifiable Information , Point of Sale Terminals , Popular , Settlement , Target
154 Results
 / 
View per page
« Previous
Page: of 7
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide