On April 8, the National Security Division of the U.S. Department of Justice’s (DOJ) new rule on cross-border data transfers takes effect. It restricts U.S. businesses from transferring certain bulk sensitive personal data to...more
4/3/2025
/ China ,
Cross-Border ,
Data Controller ,
Data Privacy ,
Data Processors ,
Data Security ,
Department of Justice (DOJ) ,
Financial Institutions ,
International Data Transfers ,
Iran ,
National Security ,
New Rules ,
Personal Data ,
Popular ,
Privacy Laws ,
Risk Mitigation ,
Russia ,
Sensitive Personal Information ,
Venezuela
On March 20, President Trump signed an Executive Order titled Stopping Waste, Fraud, and Abuse by Eliminating Information Silos, which calls for federal officials “to have full and prompt access to all unclassified agency...more
4/2/2025
/ Appeals ,
Business Taxes ,
Constitutional Challenges ,
Data Privacy ,
Department of Government Efficiency (DOGE) ,
Executive Orders ,
Government Agencies ,
Personal Data ,
Personal Information ,
Privacy Laws ,
Sensitive Personal Information ,
Separation of Powers ,
Tax Records
Minnesota has become the 19th state to pass a comprehensive data privacy law. On May 24, Governor Tim Walz signed into law the Minnesota Consumer Privacy Act (H.F. 4757) (the “MCPA”), which takes effect July 31, 2025....more
Facial recognition technology, drones the size of a butterfly, secure microchips replacing magnetic stripes on credit cards, sensors the size of a grain of sand swallowed by patients that transmit data directly to the...more
1/19/2022
/ Best Practices ,
Big Data ,
California Consumer Privacy Act (CCPA) ,
CAN-SPAM Act ,
COPPA ,
Coronavirus/COVID-19 ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
ECPA ,
Families First Coronavirus Response Act (FFCRA) ,
General Data Protection Regulation (GDPR) ,
GLBA Privacy ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Internet of Things ,
Personal Data ,
Privacy Laws ,
Public Health ,
Risk Management ,
State Privacy Laws ,
TCPA ,
VPPA
The European Union limits the transfer of EU personal data to countries whose privacy regimens are not deemed “adequate,” like the United States. American companies have tended to rely upon Standard Contractual Clauses (SCC)...more
What Happened? On July 16, 2020, in Schrems II, the EU Court of Justice invalidated the EU-U.S. Privacy Shield mechanism. The EU Court of Justice struck down a similar program, the EU-U.S. Safe Harbor, in 2015....more
What Happened? On July 16, 2020, in Schrems II, the EU Court of Justice, invalidated the EU-U.S. Privacy Shield mechanism. The over 5,000 companies that self-certified for Privacy Shield with the U.S. Commerce Department may...more
As noted in our two prior alerts, CCPA Part 1 and Part 2, the California Consumer Privacy Act (CCPA) is bringing GDPR-like data protection to the United States. Other states are now following suit.
The California...more
4/17/2019
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Consumer Protection Laws ,
Data Privacy ,
General Data Protection Regulation (GDPR) ,
Pending Legislation ,
Personal Data ,
Privacy Laws ,
Private Right of Action ,
Proposed Legislation ,
State Attorneys General
California has enacted the most important data privacy statute the United States has seen to date. The California Consumer Privacy Act (CCPA) brings European-style data privacy regulations to the United States....more
What happened?
California has enacted a sweeping digital privacy law, creating new protections and rights for consumers’ personal information. The law, which goes into effect in 2020, gives consumers a greater right to...more
What is the GDPR?
The GDPR is the European Union’s General Data Protection Regulation, a comprehensive set of strict privacy laws and regulations. The EU passed GDPR in 2016, but granted a two-year grace period which ends...more