State AG Pulse | Content moderation vs. free expression
The FTC Takes a Closer Look at Blurred Advertising to Children
AD Nauseam – Children, They are Indeed Our Future – COPPA Developments
The FTC and DOJ Act Against Amazon to Protect Privacy
AD Nauseam: A Very Special AD Nauseam – Back to School
AD Nauseam: The FTC’s Updated Endorsement Guides: Get into the Groove
[Podcast] An Introduction to the California Age-Appropriate Design Code
The UK GDPR Children’s Code
On 19 September 2023, the UK Parliament passed the Online Safety Bill (“OSB”). The OSB aims to protect individuals from illegal online content and focuses on the protection of children by requiring the removal of content that...more
Two more states have enacted consumer privacy protection laws, with Oregon and Delaware joining the existing fray of state comprehensive consumer privacy laws in California, Colorado, Virginia, Utah, Connecticut, Iowa,...more
Data Privacy Day is this weekend. Here are some tips and pointers individuals and businesses should keep in mind going forward. 1. Transparency is front and center for regulators in the United States and Europe, so if...more
SEC Division of Examinations Issues Risk Alert on Regulation S-ID and Identity Theft Prevention Programs - On December 5, 2022, the Securities and Exchange Commission (“SEC”) Division of Examinations (“EXAMS”) issued a...more
This post is the second of our series reviewing the Federal Trade Commission's (FTC) seventh annual “PrivacyCon." In yesterday’s overview, we summarized the discussions focused on consumer privacy and data security in areas...more
California Privacy Protection Agency Releases Revised Regulations - With the effective date less than three months away, and ahead of a Board Meeting on October 28 and 29, the California Privacy Protection Agency released...more
Ireland’s Data Privacy Commissioner will reportedly fine Instagram for its handling of children’s data. According to an investigation that began in 2020, Instagram published emails and phone numbers for children ages 13 to 17...more
CJEU: Special Category Data Just Got More Complicated - On August 1, 2022, the Court of Justice of the European Union (“CJEU”) delivered a preliminary ruling on the legal interpretation of special categories of personal...more
The European General Data Protection Regulation (GDPR) already provides considerable requirements for compliance programs. With Brexit comes a new GDPR for the United Kingdom. Adding to the complexity, the UK GDPR also...more
A UK High Court decision of 8 March 2022 in the case of SMO v TikTok, Inc. and Others has attracted attention in the wake of the UK Supreme Court’s decision last year in Lloyd v Google. The Supreme Court’s decision put the...more
Data Protection Commission Ireland has issued a report on the responses it received to its public consultation on its guidance on children’s rights. Of particular note is the careful consideration the commission gave the...more
Earlier this month, the U.K.’s Age-Appropriate Design Code (referred to as the “Children’s Code”) took effect. The Children’s Code is not a law per se, but rather a set of 15 flexible standards that apply to online services,...more
Whether it’s through mobile gaming or live streaming, young people are spending more time than ever participating in the virtual world. Yet, in-game chat functionality, online trolls, loot boxes and advertising are posing...more
One in five United Kingdom ("UK") internet users are under 18, and, according to the UK's Information Commissioner Office (the "ICO"), "are using an internet that was not designed for them." Under the UK's Data Protection Act...more
Children’s data isn’t child’s play. If you have a product or service that collects information from children, you should: •Be transparent. No, really. And figure out the best ways to be transparent for kids, which...more
The legislation updates the Children’s Online Privacy Protection Act (COPPA) by prohibiting internet companies from collecting personal information from anyone 13- to 15-years old without the user’s consent Senators...more
The Information Commissioner’s position paper on the UK government’s proposal for a trusted digital identity system provides insight into the interplay between data protection and digital identity. Key Points- •Given...more
The United Kingdom’s Information Commissioner’s Office (ICO) finalized a new Code of Practice (the Code) in September 2020, which applies to most companies that offer online services to or otherwise collect personal data from...more
In our second issue, we looked at some focus areas for M&A insurers in the software/SaaS, internet telephony and on-demand sectors. In this note, we dig deeper into key underwriting topics for fintech, edtech and healthtech/...more
Last week, the Republican members of the Senate Commerce Committee, including the chair of the committee, Roger Wicker, introduced the Setting an American Framework to Ensure Data Access, Transparency, and Accountability Act...more
States Consider Privacy and Data Security Legislation - It’s that time of year again, when we see a flood of legislative activity at the state level on privacy and data security laws. A couple of recent examples are below....more
On October 7, the Federal Trade Commission (FTC or the “Commission”) brought together privacy and technology stakeholders for a public workshop aimed at informing updates to regulations promulgated under the Children’s Online...more
Online services have until 31 May to respond to 16 draft standards of age-appropriate design. The ICO is required by s123 of the Data Protection Act 2018 to prepare a code of practice which contains guidance on standards...more
On February 27, 2019, the U.S. Federal Trade Commission announced a record-setting $5.7 million fine to popular short-form video sharing platform TikTok, formerly known as Musical.ly, as part of a consent order over...more
Santa’s practice of monitoring behavior of children across the globe has been publically disclosed for decades, but the recent implementation of the EU General Data Protection Regulation (GDPR) and enactment of the California...more