On February 7, 2020, California Attorney General Xavier Becerra published modified regulations for the California Consumer Privacy Act after reviewing the public comments received on the initial draft regulations. While the modified regulations provide some much-needed clarity, they also leave…
Blog Archives
Is Privacy Profitable?
It is evident that a company must invest in its privacy practices to meet legal requirements if it wants to avoid investigation costs and potential civil penalties. But can investment in privacy, data security, and data management bring benefits to…
In Search Of A Federal Data Privacy Law
In the absence of a comprehensive federal data privacy and data security law, states continue to fill the gap. The California Consumer Privacy Act took effect on January 1, 2020, and several other states have similar laws under consideration. Nevertheless,…
Privacy Primer: Family Educational Rights and Privacy Act (FERPA)
FERPA is a U.S. law, passed in 1974, that protects the privacy of student educational records. FERPA applies to all schools, from elementary schools to postsecondary education institutions, that receive federal funds under a program of the U.S. Department of…
Ninth Circuit Finds Article III Standing For Procedural Violation Of Biometric Privacy Law
The Ninth Circuit Court of Appeals has written the latest chapter of the ongoing saga of Article III standing for violations of the Illinois Biometric Information Privacy Act (“BIPA”). BIPA requires, among other things, that before collecting a person’s biometric…
Pennsylvania County Faces Up To $67 Million In Damages For Distribution Of Criminal Record Information
A suburban Philadelphia county is facing a judgment of up to $67 million after a Pennsylvania federal jury found that it violated the Pennsylvania Criminal History Record Information Act. Pennsylvania’s Criminal History Record Information Act (“CHRIA”) governs the dissemination of…
Posted in Privacy
5 Ways in Which Your Company’s Privacy Policy is Insufficient
Well thought-out internal privacy policies and procedures are an essential part of any company’s information management program. These internal policies should not be confused with a company’s external privacy notice, which informs the company’s customers as to how it may…
Tagged with: data security, policies and procedures, privacy, regulations, risk management, security practices
Posted in Policies and Procedures, Privacy
Posted in Policies and Procedures, Privacy
U.S. Supreme Court Refuses to Search Google Settlement Agreement for Fairness
The U.S. Supreme Court on Wednesday remanded a class action against Google so that the lower courts could determine whether any of the named plaintiffs have standing under Spokeo, Inc. v. Robbins. The underlying suit alleged violations of the Stored…
Third Circuit Affirms Dismissal of FACTA Suit on Standing Grounds
A three-judge panel of the Third Circuit recently affirmed a district court ruling that dismissed a suit for violation of the Fair and Accurate Credit Transaction Act of 2003 (FACTA) for lack of Article III standing. The plaintiff, Ahmed Kamal,…
Tagged with: credit cards, facta, PII, privacy, regulations, standing
Posted in Litigation, Privacy, Regulations
Posted in Litigation, Privacy, Regulations
Congress Holds Hearings on Privacy and Data Protection
With all of the hubbub swirling around Capitol Hill last week with the Michael Cohen hearings, you can’t be blamed if you missed the fact that two important congressional hearings on privacy and data protection took place as well, one…
Tagged with: cyber security, data security, hearings, legislation, privacy, regulations
Posted in Data Security, Legislation, Privacy
Posted in Data Security, Legislation, Privacy
