On November 3, 2022, the California Privacy Protection Agency (CPPA, or the Agency) issued modified proposed regulations implementing the California Privacy Rights Act (CPRA),1 which revise the initial proposed regulations...more
On October 31, 2022, the Federal Trade Commission (FTC) announced a complaint and proposed consent order against Chegg, an edtech company, over its security practices that resulted in four security breaches in three years....more
On August 30, 2022, the California legislature passed the California Age-Appropriate Design Code Act (the Act). Modeled after the UK's Age-Appropriate Design Code, California's act drastically changes the landscape of online...more
COVID-19 has rapidly accelerated our expectations that virtual connection can deliver better and more economical care. As a result, digital health companies have an unprecedented opportunity to innovate, but with that...more
6/2/2022
/ Coronavirus/COVID-19 ,
Data Management ,
Data Privacy ,
Data Protection ,
Digital Health ,
Health Care Providers ,
Healthcare Facilities ,
Personal Data ,
Physicians ,
Popular ,
Telehealth ,
Telemedicine
Connecticut became the fifth U.S. state to enact a comprehensive consumer privacy law following California, Virginia, Colorado, and Utah. On May 10, 2022, Connecticut Governor Ned Lamont signed "An Act Concerning Personal...more
On April 12, 2022, the Colorado Attorney General's Office released "Pre-Rulemaking Considerations for the Colorado Privacy Act," which provides a series of topics and questions for which the office seeks informal public...more
On March 15, 2022, the Federal Trade Commission (FTC) announced it had filed a complaint against Residual Pumpkin Entity, LLC, formerly doing business as CafePress, and PlanetArt LLC, which bought CafePress in 2020...more
Utah is poised to become the fourth state to enact comprehensive consumer privacy legislation, following California, Virginia, and Colorado. Earlier this month, Utah's legislature passed the Utah Consumer Privacy Act (S.B....more
The Colorado Attorney General's office is poised to begin the rulemaking process for the Colorado Privacy Act (ColoPA). On January 28, 2022, Colorado Attorney General Phil Weiser issued prepared remarks outlining key...more
The California Privacy Protection Agency (CPPA), the newly formed state agency responsible for implementing the California Privacy Rights Act (CPRA), recently posted its first invitation for public comment on proposed...more
Recently, the Office of the Attorney General of California announced three major updates that 1) added to the California Consumer Privacy Act's (CCPA) opt-out rules related to the sale of personal information, 2) made it...more
7/27/2021
/ California ,
California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Personal Data ,
Personally Identifiable Information ,
Privacy Laws ,
State and Local Government
On July 1, 2021, the Federal Trade Commission (FTC) announced that it settled allegations against Toronto-based Kuuhuub Inc., along with Kuuhuub's Finnish subsidiaries Kuu Hubb Oy and Recolor Oy (together, defendants), that...more
7/9/2021
/ COPPA ,
Data Collection ,
Data Protection ,
Data Retention ,
Federal Trade Commission (FTC) ,
Geolocation ,
Mobile Apps ,
Notice Requirements ,
Parental Consent ,
Personally Identifiable Information ,
Privacy Policy ,
Websites
Virginia is poised to become the second U.S. state to enact broad consumer privacy legislation. While the legislation draws some parallels with the California Consumer Privacy Act (CCPA) and upcoming California Privacy Rights...more
Apple recently announced that app developers must check a series of yes/no boxes that will generate a "nutrition label"-style summary of the app's privacy practices. This new summary, formally called "App Privacy," will be...more
On Election Day, November 3, 2020, California voters overwhelmingly voted in favor of Proposition 24—a ballot measure that creates the California Privacy Rights Act (CPRA). The CPRA revises and expands the California Consumer...more
In this issue of The WSGR Data Advisor, we examine the FCC’s recent TCPA declaratory ruling and order addressing issues regarding calling and texting consumers, and discuss the new privacy, data security, and transparency...more
9/11/2015
/ Auto-Dialed Calls ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Declaratory Rulings ,
Department of Health and Human Services (HHS) ,
Drones ,
Electronic Medical Records ,
EU ,
FCC ,
Federal Trade Commission (FTC) ,
New Legislation ,
Online Privacy Protection Act ,
Security and Privacy Controls ,
TCPA ,
Technical Standards ,
Text Messages
In this issue:
- Privacy and Data Security in Transactions: What's the Deal?
- Consumer and Financial Institution Class Actions Survive Motions to Dismiss in Target Data Breach Litigation
- California Amends...more
2/24/2015
/ Breach Notification Rule ,
Consumer Financial Protection Bureau (CFPB) ,
COPPA ,
Cybersecurity ,
Data Breach ,
Data Breach Plans ,
Data Protection ,
Financial Institutions ,
Internet ,
Internet of Things ,
Mobile Apps ,
Target
In this issue:
- FTC Recommends Improved Transparency and Security in Mobile Shopping Apps
- Appellate Courts to Address What Constitutes an "Automatic Telephone Dialing System" Under the TCPA
-...more
10/28/2014
/ Data Protection ,
Federal Trade Commission (FTC) ,
Mobile Apps ,
Mobile Payments ,
New Regulations ,
Privacy Laws ,
Private Schools ,
Public Schools ,
Retailers ,
Robocalling ,
SOPIPA ,
TCPA ,
Transparency
In this issue:
- Proposed California Law Would Impose Data Breach Liability on Retailers and Create More Stringent Data Security Requirements for Businesses
- FTC Continues Its Aggressive FCRA Enforcement and...more
7/30/2014
/ Big Data ,
Breach Notification Rule ,
Data Breach ,
Data Protection ,
Enforcement ,
Enforcement Actions ,
EU ,
EU Data Protection Laws ,
Fair Credit Reporting Act (FCRA) ,
FCC ,
FTC v Wyndham ,
Privacy Laws ,
Text Messages ,
Texting ,
Wyndham
The Federal Trade Commission (FTC) recently approved an additional method for website operators and mobile application ("app") developers to obtain parental consent to collect identifying information from children. It also...more
In this issue:
- Kaiser Foundation Health Plan Settles California Attorney General Charges over Delayed Data Breach Notification
- Status of the EU Regulation and the Safe Harbor Framework
- FTC Steps...more
In this issue:
- FTC Settlement with Flashlight App Requires Extensive Disclosures Outside of the Privacy Policy to Collect and Share Geolocation Information
- GAO and Senate Commerce Committee Release Studies...more
1/30/2014
/ Apple ,
Class Action ,
Cramming ,
Data Brokers ,
Data Collection ,
Data Protection ,
Federal Trade Commission (FTC) ,
GAO ,
Geolocation ,
Mobile Apps ,
Mobile Devices ,
Privacy Laws ,
Privacy Policy ,
Smartphones
In this issue:
- California Amends CalOPPA to Require Do-Not-Track Disclosures
- California’s Social Media “Eraser” Bill Becomes Law
- California Extends Security Breach Notification Requirements to...more
In this issue:
- FTC Releases Final Amendments to Children's Online Privacy Protection Rule
- Mobile Apps Face Heightened Privacy Enforcement - Policies and Practices Scrutinized
- Global and European...more
1/18/2013
/ App Developers ,
COPPA ,
Data Protection ,
De-Identified Protected Health Information ,
FCC ,
Federal Trade Commission (FTC) ,
Mobile Apps ,
Opt-Outs ,
Privacy Policy ,
TCPA ,
Texting