The old saying went that “if you don’t want it on the front page of the newspaper, don’t put it in an email.” Well, if you don’t want to produce
Continue Reading If You Don’t Want It Released to an Employee, Don’t Put It in Your Employee Files
What can the California Privacy Protection Agency learn from the EU experience as it gets ready to draft regulations regarding DPIAs? Here is a recap of my remarks from the
Continue Reading What Can the California Privacy Protection Agency Learn From Europe?
What do obscenity and data minimization have in common?
As Justice Potter Stewart famously wrote in his concurring opinion to the U.S. Supreme Court’s decision in the 1964 free speech
Continue Reading What’s Data Minimization? As the Saying Goes, You’ll ‘Know It When (You) See It’
Datatilsynet Norway has issued a helpful guide on the data protection aspects of employee monitoring, which are helpful for GDPR, but also for California employers with CPRA bringing employee rights
Continue Reading What Employers Need to Know About Monitoring Employee E-Mail
What can we learn about disclosures and how to draft privacy notices from the Sweden IMY decision? And why is it important for both GDPR companies and CPRA, CDPA, CPA
Continue Reading Clear & Concise and Everything Nice: What the IMY Decision Means for Your Privacy Notice
The California Consumer Privacy Act (CCPA) went into effect in 2020 and the California Privacy Rights Act (CPRA) is set to go into full effect in 2023.
But there have
Continue Reading Where do the California Consumer Privacy Act and California Privacy Rights Act stand?
Your rights of access under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) include inferences derived from the your personal information, California Attorney General Rob
Continue Reading CCPA Right of Access Includes Inferences, California Attorney General Says
The United Kingdom’s Information Commissioner’s Office has issued draft guidance regarding governance and anonymization.
What does it mean for GDPR and for the host of new US Privacy laws, including
Continue Reading Anonymization Governance: Why It’s Important for GDPR and for CPRA
Many EU companies have their own ideas on what US Privacy laws mean for the, Here are three of the more common myths out there, busted.
I don’t
Continue Reading Busted: Three Myths EU Companies Have About US Privacy laws
Maine is stepping into the privacy mix with a possible biometric law, and a possible CCPA-like law.
The biometric law, proposed by State Representative Maggie O’Neil, is generally similar to
Continue Reading A Look at Maine’s Proposed Biometrics Law