Home Home About Us Practice Areas Our Attorneys Press & Publications Events Diversity Pro-Bono Careers
Print This Page
2018   2017   2016   2015   2014   2013   2012   2011   2010   2009   2008   2007   2006   2005  



Digital Media, Technology & Privacy Alert >> EU Court of Justice Strikes Down U.S.-EU Safe Harbor for Data Sharing  - Alert - 10/07/2015

Companies that transfer personal data from the EU to the U.S. must now consult with counsel to consider the effect of the Court of Justice’s decision on their business practices and whether they should rely on alternatives to the Safe Harbor, including model contract clauses, binding corporate rules and direct consent to permit them to continue transferring personal data to the United States.


Digital Media, Technology & Privacy Alert >> Federal Circuit Court Reinforces FTC's Authority to Act in Data Breach Cases - Alert - 08/27/2015

For the past decade, the FTC has been bringing administrative actions under the Act against companies with allegedly deficient data security practices that failed to protect consumer data against hackers; the vast majority of these matters have ended in settlement. Now, with the Third Circuit's decision affirming the FTC's authority to hold companies accountable for failing to safeguard consumer data, one can expect an emboldened FTC to take even more action. All companies, especially those that store or maintain any sensitive financial or personal information, should use this ruling as a reason to re-assess their current cybersecurity practices to ensure that they are consistent with and accurately disclosed under all public representations about these practices, and that they have taken adequate steps to protect consumer data from unauthorized access.


Digital Media, Technology & Privacy Alert >> DAA Announces Mobile Privacy Enforcement to Begin September 1, 2015 - Alert - 05/18/2015

Enforcement of the mobile privacy guidelines is about to begin across all of the sectors of the mobile IBA ecosystem, including app providers, ad networks, brands, agencies, and publishers. Enforcement will be active by both the BBB and DMA, and therefore all companies involved in IBA within the mobile ecosystem should take the time now to review their digital practices to determine whether they need to comply with the DAA’s Self-Regulatory Principles.


Advertising, Marketing & Promotions Alert >> Court Finds Affiliate Marketing Network Responsible for False Claims Made by Its Affiliates - Alert - 04/20/2015

The court’s decision makes it clear that affiliate networks can be held responsible for the acts of their affiliates even if they do not create the content used by the affiliates. Accordingly, affiliate networks should consider consulting with counsel to implement best practices to try to limit their potential liability for affiliates’ actions under the FTC Act.


Digital Media, Technology & Privacy Alert >> In “Internet of Things” Report, FTC Staff Warns Makers of Connected Devices to Improve Privacy and Security - Alert - 01/28/2015

As the report makes clear, the FTC is focusing on privacy and security issues stemming from the growth of the IoT. Since FTC staff reports are often a prelude to enforcement action by the Commission, now is the time for IoT providers to review their privacy disclosures and security practices.


Digital Media, Technology & Privacy Alert >> Mobile Shopping Apps Do Not Provide Sufficient Disclosures to Consumers, FTC Staff Report Finds - Alert - 10/27/2014

The FTC staff report on “mobile shopping” apps – coming on the heels of FTC workshops, other reports, and enforcement actions on the topic of mobile privacy – highlights the FTC’s continuing commitment to translating its general position on company privacy and disclosure practices to emerging and new mobile platforms. We can expect to hear more from the FTC on mobile commerce, but in the meantime, all companies developing mobile shopping apps should build in the recommendations contained in this staff report.


Digital Media, Technology & Privacy Alert >> California Amends Data Breach Notification Rules, Which “May” Include Free Credit Monitoring  - Alert - 10/24/2014

With the passing of California’s new data breach bill, companies that are the source of a breach involving personal information, and that have a duty to notify customers of the breach under California law, should carefully evaluate any offer to provide identity theft and mitigation services (which may include credit monitoring).  Further, any company that merely possesses personal information of California residents should be aware of its obligations under the law. 


AdExchanger.com: The Risk Of Clicking Facebook’s Social Plug-in - Published Article - 07/30/2014

by Gary A. Kibel


Digital Media, Technology & Privacy >> New Florida Privacy Breach Law Takes Effect, With Stringent Notification Rules and Other New Provisions - Alert - 07/07/2014

There are 47 states with security breach notification laws, many of which have different standards.  Any company that may possess personal information of Florida residents would be advised to (1) have a written information security policy in place; and (2) have an incident response plan and team ready to go in the event of a breach.


Digital Media, Technology & Privacy Alert >> Snapchat Settles FTC Charges Alleging False Promises of Disappearing Messages and Failure to Protect Consumer Data - Alert - 06/11/2014

The settlement with Snapchat is part of the FTC’s continuing effort to ensure that companies market their apps truthfully and honor their privacy promises to consumers.  Companies should note that a statement in a privacy policy is like any other claim – it must be accurate, not deceptive and supportable.  In announcing the proposed settlement, FTC Chairwoman Edith Ramirez stated that, “If a company markets privacy and security as key selling points in pitching its service to consumers, it is critical that it keep those promises.” The FTC’s message is a longstanding one, and one that is unlikely to disappear anytime in the near future.        


Digital Media, Technology & Privacy Alert >> In Long-Awaited Report on Data Brokers, FTC Expresses Concerns Over Transparency and Consumer Control - Alert - 06/05/2014

The extent to which the FTC seeks to independently focus its attention on data brokers remains to be seen. However, it is important to emphasize that, given the report’s broad characterization of data brokers as “companies that collect consumers’ personal information and resell or share that information with others,” businesses in addition to those traditionally viewed as “data brokers” should take careful note of this report. 


Digital Media, Technology & Privacy Alert >> California Attorney General Addresses “Do Not Track” and Other Website Privacy Issues - Alert - 06/04/2014

California and the California Attorney General are influential in Do Not Track (DNT) and online privacy issues.  While the new guidance is not new law, its recommendations should be carefully considered by online services. Regulators are increasing their energies on focusing on privacy and data security issues, so following their recommendations should only have a positive effect.


Digital Media, Technology & Privacy Alert >> SEC Permits Certain Uses of Social Media by Investment Advisers and Representatives - Alert - 04/16/2014

The SEC’s guidance is a welcome step forward and adds to the growing body of regulatory guidance for social media usage in the financial services sector. All participants in the financial services industry should develop or carefully review their social media policies and procedures to ensure compliance with the specific requirements set forth in the guidance.


Digital Media, Technology & Privacy Alert >> Canada’s Anti-Spam Law, Poised to Take Effect, Requires Action Now - Alert - 04/14/2014

Advertisers that have not yet begun to do so should develop plans and procedures to comply with the CASL for Canadian residents on their email marketing lists.  Those plans must include confirming or re-opting-in users, methods to obtain express consent for receiving future CEMs, systems to remove people who withdraw their consent or do not provide it in the first instance, and ways to adjust to new regulations as they are issued and take effect. The penalties are potentially too severe to delay any longer.


Droid Report // Interview with Gary Kibel - Press Mention - 03/26/2014


Digital Media, Technology & Privacy Alert >> FTC’s Proposed Settlement in Data Security CASE Highlights Companies’ Need to Supervise Vendors  - Alert - 03/06/2014

The FTC’s proposed settlement with GMR should highlight the need for all companies that use third-party vendors to process personal information to properly supervise and manage these third-party vendors.  Companies may become liable for the acts
of their vendors.  

PDF >>

Advertising, Marketing & Promotions Alert >> California Adopts Minors’ Privacy Law - Alert -  10/09/2013

By Gary A. Kibel; Allison Fitzpatrick

California has become the first state in the country to pass a law requiring operators of commercial websites or online services to give minors the ability to remove their online content. The law, which takes effect on January 1, 2015, also imposes restrictions relating to the online marketing of certain products to minors.

PDF >>

The Huffington Post: HuffPost Tech: We've Been Duped: The Fake Reviews That Caused You To Dine Here And Buy That - Published Article -  09/26/2013

By: Allison Fitzpatrick and Alison Winter

In an increasingly tech-reliant world, most of us do not step foot in a restaurant or buy anything online without doing at least a modicum of Internet research. And who better to look to before making a reservation or adding a gadget to your shopping cart than other consumers who have dined at that restaurant and used that gadget? Sadly, some of the reviews we relied upon were, in fact, totally fake.

PDF >>

Mobile Marketer: W3C Agreement on Do Not Track Standards Would Make Legal obligations Murky - Published Article -  09/16/2013

By Gary S. Kibel

While the W3C Tracking Protection Working Group takes a summer vacation from its cantankerous and sometimes amusing debate over a Do Not Track (DNT) law, it is worth taking a moment to consider how compliance could be enforced from a legal perspective if final DNT standards did come out of the group.

Unlike Steven Spielberg’s Abraham Lincoln who extolled, "I am the president of the United States of America, clothed in immense power," the W3C is actually powerless.


PDF >>

Advertising, Marketing & Promotions Alert >> “Do Not Track” Disclosure Bill Likely to Become Law in California - Alert -  09/11/2013

By: Gary A. Kibel

The California Online Privacy Protection Act (the Act) was enacted in 2004 to little fanfare. It was the first state law to require a website to post a privacy policy, even though doing so was commonly believed to be the best way to comply with applicable federal and state consumer protection laws and a best practice.


PDF >>

Gamustra: Seven Steps to Improved Security - Published Article -  05/02/2012

By Gary A. Kibel and S. Gregory Boyd

While privacy and data security are hot topics everywhere these days, they are of particular interest to the game industry. Vast quantities of consumer data are generated every day in the game industry, including through consoles, websites, and mobile devices. Data can be a significant asset in that it provides valuable insight into a consumer’s behavior which can be used to improve games and target messages and offerings. However, data can also be a liability.

PDF >>

MediaPost: The Pinning Rules - Published Article -  03/26/2012

By Vejay G. Lalla and Anne DiGiovnni

In addition to “friending,” “liking,” “tweeting,” and “checking in,” the social-media savvy have added “pinning” to their repertoire as Pinterest.com has taken off more than 1 billion page views per month.

As with other social networks or sites that have significantly increased traffic over a very short time, the rules of engagement, particularly for brands, are not yet entirely clear. However, we know that social media marketers have a continuing desire to drive traffic and monetize the ever-growing word-of-mouth engagement power of social networking.

Page  123