The Virginia legislature is considering looking at amending the state’s Consumer Data Protection Act to expand protections related to children’s data.
Some key points in the bill:
- Child defined
My Health, My Data: New Bill Aims to Protect Health Data in Washington
A new Washington State bill works to close the gap between consumer knowledge and industry practice by providing stronger privacy protections for all Washington consumers’ health data.
The bill provides
Continue Reading My Health, My Data: New Bill Aims to Protect Health Data in WashingtonPrivacy in the City That Never Sleeps: The New York Privacy Bill
It’s six days into the new year and we already have four new comprehensive privacy bills from: New York, Kentucky, Tennessee and Oklahoma.
There are a lot
Continue Reading Privacy in the City That Never Sleeps: The New York Privacy Bill
FTC Fines Epic Games $520 Million: What You Need to Know
If your website, app or game targets kids (or sort of targets kids) and you haven’t been taking your obligations under the Children’s Online Privacy Protection Act of 1998 seriously
Continue Reading FTC Fines Epic Games $520 Million: What You Need to Know
What Does the EU-US “Draftequacy” Decision Mean for Companies Right Now?
If you are a GDPR-compliant company, does that mean you can start doing business in the United States with no additional thoughts about privacy?
As Simon Cowell says: “It’s a
Continue Reading What Does the EU-US “Draftequacy” Decision Mean for Companies Right Now?What Did the EDPS Have to Say About FTC Rulemaking on Commercial Surveillance?
The European Data Protection Supervisor (EDPS) has submitted comments to FTC Rulemaking on commercial surveillance.
Here are some key takeaways.
IOT devices:
- It is important that data from the Internet
Make Sure You Have a Good Data Retention Plan. You Need It.
You need a data retention plan. No really.
And not just in the European Union. In California too.
Commission Nationale de l’Informatique et des Libertés (CNIL) has fined messaging platform
Continue Reading Make Sure You Have a Good Data Retention Plan. You Need It.Deidentification vs Anonymization: What Is Enough?
For deidentification under the traditional laws like HIPAA, removal of identifiers qualifies.
That was a key facet of what I discussed last week on an anonymization panel during the IAPP
Continue Reading Deidentification vs Anonymization: What Is Enough?
Caveat Employer? In the EU and California, Employers Must Beware!
Employers should have in place a process to delete former employees’ information – including public facing information and photos – to meet their retention limitation requirements, according to the Belgian
Continue Reading Caveat Employer? In the EU and California, Employers Must Beware!Is Everything Sensitive Data?
After the recent Court of Justice of the European Union decision on sensitive inferences that can be drawn from the name of your spouse, it is fair to ask: Is
Continue Reading Is Everything Sensitive Data?