The Bottom Line As we step into 2024, the privacy regulation landscape continues to evolve rapidly, presenting significant challenges for businesses. We're seeing more privacy laws from individual states, which creates a complex web of compliance requirements across different regions. Continue Reading
U.S. Data Broker Legislation Expands to Include Texas and Oregon
The Bottom Line Four states now have laws that create rules and registration requirements for data brokers. While initially limited to Vermont’s 2018 Data Broker Act and California’s 2019 law, amended by the Delete Act on October 10, 2023, Texas and Oregon recently passed their own laws. Continue Reading
Westlaw Today | Data Collection in the EU: Troubled Waters for U.S. Companies
UK Issues New Model Clauses for International Data Transfers
The Bottom Line As a result of Brexit, the UK has introduced its own new documents to govern certain cross-border transfers of personal data.Businesses need to be aware of the similarities and differences between the EU and UK approaches. After Brexit took effect last year, the United Continue Reading
European Commission Adopts Revisions to Standard Contractual Clauses
The Bottom Line The European Commission (Commission) issued updated Standard Contractual Clauses (SCCs) on June 4, 2021. The long-awaited announcement follows a 2020 decision by the EU’s highest court to overturn the EU-US Privacy Shield Framework (Privacy Shield), which previously allowed for Continue Reading
Don’t Smile at the Camera — New Biometric Data Laws
The Bottom Line The confluence of privacy, security, societal and other reasons have resulted in increased scrutiny over the use of biometric data through new proposed laws. In the absence of a consistent federal standard, businesses should assess their biometric data collection and use practices Continue Reading
T Minus 1 Year Until GDPR: Are You Ready for Take Off?
The Bottom Line It remains to be seen what will happen after the GDPR becomes effective on May 25, 2018. The GDPR compliance roadmap can be helpful for any organization that collects or processes personal data, whether or not an organization in or outside of the EU believes it is subject to the Continue Reading