No Password Required: MITRE Engage Lead, Innovator in Cyber Deception, and Dance Community Builder
Podcast: Interoperability: Health Care's Next Disruptor Is openEHR - Diagnosing Health Care
Podcast: Interoperability: A New Vision Through openEHR - Diagnosing Health Care
Podcast–Interoperability: How Far We’ve Come and Where We’re Going - Diagnosing Health Care
Interview With Ayesha Minhaj, Google - Digital Planning Podcast
Inside Privacy Law: The Regulation of Personal Data
Oklahoma: Changing Data Privacy as We Know It?
M365 in 5 – Part 7: Teams Audio/Video (A/V) Conferencing
M365 in 5 – Part 3: OneDrive for Business – Protected personal collaboration
M365 in 5 – Part 2: SharePoint Online – The new file-share environment
Healthcare Tech: How Are Licensing Agreements Bridging the Industry Divide?
Compliance Perspectives: The Ethics of Data
Tackling Modern Attachment and Link Challenges in G-Suite, Slack, and Teams
From NC State to Changing the State of Health Information Networks, with Medicom Technologies’ Malcolm Benitz
U.S. Department of Defense Awards Contract to Secure Sensitive Data With Blockchain
Global privacy in the age of COVID-19
Compliance Perspectives: Permissible Disclosures under HIPAA, Especially in the Time of COVID-19
Compliance Perspectives: COVID-19 and GDPR
Jones Day Presents: Antitrust, Collusion, and Blockchains
[WEBINAR] Laying the Foundation for Maximizing Benefits Around Emerging Technologies
Businesses just received some good news when a federal court dismissed a California Invasion of Privacy Act (CIPA) claim that aimed to expand the reach of the state’s wiretapping law to cover internet communications. The...more
Readers of this blog may recall a recent favorable decision handed down by Massachusetts State’s highest court in which it found that Massachusetts Wiretap Act claims (“MWA”) do not extend to consumer interactions with...more
As we prepare to close the books on another eventful year in the cyber and privacy space, Wiley’s cyber insurance team is already making predictions for 2025. Q: So, let’s get right into it – based on your experience this...more
The Digital Operational Resilience Act (DORA) is an EU regulatory framework, aimed at enhancing the financial sector’s ability to withstand and recover from ICT (information and communication technology) disruptions....more
Readers of this blog are aware of the fact that, beginning on October 1, 2024, the Medicare one-to-one consent rules will go into effect – requiring Third Party Marketing Organizations (“TPMOs”) who engage in Medicare-related...more
On August 23, 2024, a proposed class action lawsuit was filed by Kamilah Jolly, against FurtherEd, Inc., doing business as Lawline, which centers on allegations that Lawline violated the Video Privacy Protection Act (VPPA)....more
On June 7, 2024, the New York Legislature passed two bills to protect children online. The Stop Addictive Feeds Exploitation (SAFE) for Kids Act, S7694A, prohibits social media platforms from providing defined "addictive...more
Recently, companies have found themselves defending allegations that the use of third-party pixel tracking technology on their websites violates state consumer privacy laws. Fortunately, these claims do not always survive the...more
On May 9, 2024, Paul Hastings participated in a panel on litigation trends and risk management at this spring’s Privacy+Security Forum. Panelists included Carter Simpson (Partner, Paul Hastings) and Matt Gardner (Senior...more
On April 11, 2024, Monument, Inc. (“Monument”), settled claims brought by the Federal Trade Commission (“FTC”) alleging that it had committed certain health data privacy law violations. Monument provides online addiction...more
Last week, a bipartisan coalition in Congress introduced the American Privacy Rights Act (“APRA”), a draft federal privacy bill. The APRA represents the latest effort to create a federal consumer data privacy law after its...more
I’m not a cyber expert, but as a compliance professional with accountability for internal investigations of employee and third-party misconduct I’ve had a front row seat to the evolution of risk that has mirrored the mass...more
On February 21, the California Attorney General (“AG”) announced a settlement with DoorDash, an online food delivery service, to resolve allegations that the company violated the California Consumer Privacy Act (CCPA) and...more
If the Federal Trade Commission’s (FTC) recent pursuits did not make clear the agency’s deep concerns about the use of health information for advertising purposes, a new enforcement action brought by the FTC against...more
Health privacy has been a Federal Trade Commission (FTC) priority for decades, and indeed, one of its very first privacy cases, in the early 2000s, involved the inadvertent sharing of user health data. Fast-forward a few...more
What does the U.K. Information Commissioner’s Office have to say about what it takes for adtech initiatives to be compliant with data protection? “There is an opportunity for market participants to move towards developing...more
Restaurants in New York City will soon gain access to valuable information about their delivery customers. On July 29, 2021, the New York City Council approved a bill requiring third-party food delivery services (“FDS”),...more
New York City has passed a bill limiting data sharing by food delivery apps and food service establishments. What does that mean? Here are some key takeaways:.....more
No. A company can process data only if one (or more) of six lawful purposes applies. When sharing personal data with a third party for the purpose of permitting the third party to market to data subjects, companies...more
The CCPA broadly defines the term “sale” as including the act of “disclosing” or “making available” personal information “for monetary or other valuable consideration” from one business to another. This arguably could include...more
The most typical case that implicates Section 230 of the Communications Decency Act (CDA) involves a provider that hosts content and a third party plaintiff seeking to have content removed. Last month, in a less typical case,...more
Not necessarily. California has two statutes that apply to the sale of information – The California Shine the Light Law and the California Consumer Protection Act. The California Shine the Light Law applies to companies...more
The proposals would grant consumers increasing rights to require providers to share access to their data directly with chosen third parties. The UK government has released a consultation advocating the introduction of...more
The California Consumer Privacy Act ("CCPA") was enacted in early 2018 as a political compromise to stave off a poorly drafted, and plaintiff’s friendly ballot initiative. Although the CCPA is scheduled to go into force in...more