The European Data Protection Supervisor (EDPS) has submitted comments to FTC Rulemaking on commercial surveillance.
Here are some key takeaways.
It is important that data from the Internet of Things are only used for purposes that are compatible with the original purpose of the processing, and that these…Continue Reading What Did the EDPS Have to Say About FTC Rulemaking on Commercial Surveillance?
You need a data retention plan. No really.
And not just in the European Union.Continue Reading Make Sure You Have a Good Data Retention Plan. You Need It.
For deidentification under the traditional laws like HIPAA, removal of identifiers qualifies.
That was a…Continue Reading Deidentification vs Anonymization: What Is Enough?
Employers should have in place a process to delete former employees’ information – including public…Continue Reading Caveat Employer? In the EU and California, Employers Must Beware!
President Joe Biden’s executive order on EU-U.S. data privacy is a “huge step” towards resolving the ongoing data transfer crisis.
It imposes limits on the collection and processing of information…Continue Reading President Biden’s Executive Order Is a Big Step Forward, but Will There Be Two Steps Back?
While speaking recently at the Nordic Privacy Arena in Sweden, I offered Nordic companies seven things they should think about when doing business in the United States.
For your reading…Continue Reading 7 Things Nordic Companies Should Think About When Doing Business in the US
I was lucky enough to give the keynote this week at the InfoGov World conference in San Diego.
Between panels and speeches, I came up with these seven hot topics…Continue Reading Data Protection Professionals Like it Hot: 7 Hot Topics and Trends in Data Privacy Today
What does the Court of Justice of the European Union (CJEU) Advocate General’s opinion in the case of Meta vs. the German Bundeskartellamt tell us regarding the scope of what…Continue Reading CJEU Advocate General Issues Opinion on Meta vs. the German Bundeskartellamt
In letter to hospital CEO’s, California Attorney General Rob Bonta asked how healthcare facilities and other providers were addressing racial and ethnic disparities in commercial decision-making tools and algorithms.
In…Continue Reading California Attorney General Rob Bonta Is Coming After Your Algorithmic Biases
A Class Action Lawsuit Claims a Health System Uses Meta Pixel on Its Website. What You Need to Know.
Health information is sensitive.
Sharing it with third parties for advertising is more sensitive.
Doing it behind a log-in where there is no expectation of such tracking?
You’re…Continue Reading A Class Action Lawsuit Claims a Health System Uses Meta Pixel on Its Website. What You Need to Know.
Last week, six House Democrats introduced H.R. 8334, the Robotext Scam Prevention Act, which seeks to expand federal telemarketing laws to, among other things, expressly cover text messaging.
It…Continue Reading New House Bill Threatens to Expand the TCPA to Regulate Text Messages
The Health Insurance Portability and Accountability Act of 1996 may be the most well-known privacy law in the United States, but it is also one of the most misunderstood.
Many…Continue Reading HIPAA Covers a Lot Less Than People Think. But Beware of Other US Privacy Laws.
Does vehicle service data for services performed on a vehicle while owned by a previous owner belong to the new owner and need to be provided as part of a…Continue Reading Does Vehicle Service Data “Relate to an Identifiable Individual?” Finland DPA Says It’s Complicated