The Health Insurance Portability and Accountability Act of 1996 may be the most well-known privacy law in the United States, but it is also one of the most misunderstood.
Many
Continue Reading HIPAA Covers a Lot Less Than People Think. But Beware of Other US Privacy Laws.
“Businesses, service providers, and contractors are to comply with not just the letter of the (California Consumer Privacy Act), but the spirit of the law.”
That is according to a
Continue Reading To Clarify the Meaning of CCPA, CPPA Issues Initial Statement of Reasons for New Regs
During a recent webinar hosted by The Chicago Bar Association, some other panelists and I made some predictions about the future of data privacy.
What is on the horizon?
California Attorney General Rob Bonta has issued statement about protecting health data in mobile apps in view of the upcoming SCOTUS decision in Dobbs. In the process, he also signaled
Continue Reading Keep Your Health Data Secure. And Your App-Hosted Health Data Securer.
The old saying went that “if you don’t want it on the front page of the newspaper, don’t put it in an email.” Well, if you don’t want to produce
Continue Reading If You Don’t Want It Released to an Employee, Don’t Put It in Your Employee Files
What can the California Privacy Protection Agency learn from the EU experience as it gets ready to draft regulations regarding DPIAs? Here is a recap of my remarks from the
Continue Reading What Can the California Privacy Protection Agency Learn From Europe?
What do obscenity and data minimization have in common?
As Justice Potter Stewart famously wrote in his concurring opinion to the U.S. Supreme Court’s decision in the 1964 free speech
Continue Reading What’s Data Minimization? As the Saying Goes, You’ll ‘Know It When (You) See It’
Datatilsynet Norway has issued a helpful guide on the data protection aspects of employee monitoring, which are helpful for GDPR, but also for California employers with CPRA bringing employee rights
Continue Reading What Employers Need to Know About Monitoring Employee E-Mail
What can we learn about disclosures and how to draft privacy notices from the Sweden IMY decision? And why is it important for both GDPR companies and CPRA, CDPA, CPA
Continue Reading Clear & Concise and Everything Nice: What the IMY Decision Means for Your Privacy Notice
The California Consumer Privacy Act (CCPA) went into effect in 2020 and the California Privacy Rights Act (CPRA) is set to go into full effect in 2023.
But there have
Continue Reading Where do the California Consumer Privacy Act and California Privacy Rights Act stand?