The Bottom Line While Virginia is now the second state with a comprehensive consumer privacy law, it certainly will not be the last.With CCPA already in effect and the CDPA and CPRA both on the horizon, companies will need to begin planning now to update their privacy programs to ensure Continue Reading
Don’t Smile at the Camera — New Biometric Data Laws
The Bottom Line The confluence of privacy, security, societal and other reasons have resulted in increased scrutiny over the use of biometric data through new proposed laws. In the absence of a consistent federal standard, businesses should assess their biometric data collection and use practices Continue Reading
EU-U.S. Data Transfers Post Schrems II
The Bottom Line The Schrems II decision inserted a great deal of uncertainty into data transfers from the EU to the United States. Regulators on both sides of the Atlantic continue to provide guidance, but have not completed negotiations on a new process. Businesses must remain as vigilant and Continue Reading
And the Winner of This Year’s Election Is… the California Privacy Rights Act
The Bottom Line Now that California voters have approved the CPRA, also known as “CCPA 2.0”, businesses should review (or create) their privacy programs to ensure compliance with the CCPA (in its current form, including the recently finalized regulations) as well the new changes that will take Continue Reading
CCPA Employee Exemptions Are Extended and California AG Is Actively Enforcing the CCPA
The Bottom Line The California legislature has passed AB 1281, extending the CCPA’s temporary exemptions for certain B2B and employment information for one year until January 1, 2022.If the CPRA ballot initiative passes in California’s general election this November, the exemptions will expire Continue Reading
Senators Urge the FTC to Investigate “Privacy Violations” by Adtech Companies
The Bottom Line Some lawmakers and regulators are clearly seeking to step up the heat on data collection and usage practices in the Adtech industry. All participants in the online advertising ecosystem should carefully consider the privacy practices of any service that they provide or Continue Reading
Schrems II: The EU-US Privacy Shield Is a Thing of the Past
The Bottom Line Now that the European Union has invalidated the EU-US Privacy Shield Framework, companies will need to re-examine the methods they use to transfer personal data of EU data subjects from the EU to the U.S. The Standard Contractual Clauses, which survived the court’s ruling for now, Continue Reading
European Commission Marks GDPR’s Second Anniversary with a Review and Possible Updates
The Bottom Line While GDPR was intended to harmonize data protection law throughout the EU and provide consistent controls for processing personal data, the European Commission recognizes that there are areas for improvement. The Commission is currently engaged in issuing new standard contractual Continue Reading
CCPA Final Regulations Submitted, IAB Tech Lab Releases Data Deletion Request Solution
The Bottom Line The submission of the final regulations to the OAL now puts businesses on notice of their actual CCPA compliance obligations.Businesses must ensure that they are prepared for CCPA enforcement to begin on July 1, 2020, regardless of when the final regulations actually take effect.The Continue Reading
Competing Bipartisan COVID-19 Privacy Bills to Be Introduced
The Bottom Line With pressures mounting to find new ways to fight the coronavirus and responsibly ease social distancing restrictions, the use of mobile and geolocation technologies may be key in this fight. Therefore, both The COVID-19 Consumer Data Protection Act and Continue Reading