In the Federal Trade Commission’s (“FTC”) first action related to connected vehicle data, the agency announced that it reached a settlement with General Motors (“GM”) over GM’s unauthorized collection, use, and sale of driver...more
The Department of Justice (“DOJ”) published its final regulations on “Preventing Access to U.S. Sensitive Personal Data and Government-Related Data by Countries of Concern or Covered Persons” (the “Final Rule”). The Final...more
2/3/2025
/ Data Privacy ,
Data Protection ,
Data Security ,
Department of Justice (DOJ) ,
Enforcement Actions ,
Executive Orders ,
Federal Contractors ,
Final Rules ,
National Security ,
Recordkeeping Requirements ,
Regulatory Requirements ,
Risk Management ,
Sensitive Personal Information
The Office for Civil Rights (“OCR”) under the U.S. Department of Health and Human Services (“HHS”) recently issued a Notice of Proposed Rulemaking (the “Proposed Rule”) to modify the Health Insurance Portability and...more
The Consumer Financial Protection Bureau (“CFPB”) has published a Notice of Proposed Rulemaking (“NPRM”) titled “Protecting Americans From Harmful Data Broker Practices” 89 Fed. Reg. 101402 (Dec. 13, 2024). If adopted in its...more
On March 28, 2023, Iowa became the sixth state to pass a comprehensive consumer privacy law, joining California, Colorado, Connecticut, Utah, and Virginia. The Iowa Act Relating to Consumer Data Protection (“ICDPA”) will...more
Started in Europe in 2007, Data Privacy Day, or Data Protection Day as it is known internationally, is an international effort that takes place annually on January 28 to create awareness of the importance of data privacy. In...more
1/28/2022
/ California Consumer Privacy Act (CCPA) ,
Data Mapping ,
Data Privacy ,
Data Protection ,
Fair Credit Reporting Act (FCRA) ,
General Data Protection Regulation (GDPR) ,
GLBA Privacy ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Personally Identifiable Information ,
Policies and Procedures ,
Regulatory Standards
On July 7, 2021, Colorado Governor Jared Polis signed into law S.B. 21-190, known as the Colorado Privacy Act (“CPA”). Colorado is now the third U.S. state to enact comprehensive consumer data privacy legislation, following...more
8/6/2021
/ Colorado ,
Consumer Privacy Rights ,
Data Collection ,
Data Controller ,
Data Privacy ,
Data Protection ,
Opt-Outs ,
Personal Data ,
Privacy Laws ,
Right of Access ,
State Privacy Laws
Arnall Golden Gregory LLP's Food & Drug Newsletter is a monthly update of legal and regulatory issues that affect the FDA-regulated community and highlights articles from members of our Food & Drug practice, as well as from...more
The European Commission (“EC”) has adopted a long-awaited new set of standard contractual clauses (“SCCs”) for the transfer of personal data to parties in third countries outside the European Union (“EU”) and European...more
6/18/2021
/ Data Controller ,
Data Processors ,
Data Protection ,
EU ,
European Commission ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Schrems I & Schrems II ,
Standard Contractual Clauses
In this episode, AGG’s Food & Drug team leader, Alan G. Minsk, and co-chair of AGG's Data Privacy practice, Kevin L. Coy, discuss U.S. and international privacy and data security law issues life sciences companies may...more
Decision of the Court of Justice of the European Union - On July 16, 2020, the Court of Justice of the European Union (CJEU) issued its judgment in the so-called “Schrems II” case. ...more
The COVID-19 Pandemic is forcing organizations to adjust their operating practices to continue operations, meetings, classes, and services remotely insofar as possible. Organizations using these types of technologies, as...more
4/6/2020
/ Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Data Use Policies ,
Data-Sharing ,
General Data Protection Regulation (GDPR) ,
Internet ,
Teleconferences ,
Videoconference ,
Websites
On January 1, 2020, the California Consumer Privacy Act (CCPA or the “Act”) became effective. At a high level, the CCPA gives California residents, with certain exceptions, new rights to know what types of personal...more
1/16/2020
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Opt-Outs ,
Personal Information ,
Privacy Laws ,
Right to Delete
On Thursday, October 10th, the California Attorney General’s Office released long-awaited Proposed Regulations governing implementation of key provisions of the California Consumer Privacy Act of 2018 (CCPA) (Proposed...more
10/16/2019
/ Attorney General ,
California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Opt-Outs ,
Personal Information ,
Privacy Laws
Against the backdrop of the growing controversy surrounding allegations that Facebook allowed a company to mine the personal information of approximately 50 million Facebook users, the Federal Trade Commission (“FTC”)...more
After a pause of nearly two months, the Department of Health and Human Services Office of Civil Rights (HHS OCR) has resumed its announcement of settlements for alleged HIPAA violations, with four new settlement agreements...more
On January 9, 2017, the Department of Health and Human Services Office of Civil Rights (HHS OCR), which enforces the privacy requirements contained in Health Insurance Portability and Accountability Act (HIPAA), announced a...more