The Health Insurance Portability and Accountability Act of 1996 may be the most well-known privacy law in the United States, but it is also one of the most misunderstood.
Many
Continue Reading HIPAA Covers a Lot Less Than People Think. But Beware of Other US Privacy Laws.
Does vehicle service data for services performed on a vehicle while owned by a previous owner belong to the new owner and need to be provided as part of a
Continue Reading Does Vehicle Service Data “Relate to an Identifiable Individual?” Finland DPA Says It’s Complicated
“Businesses, service providers, and contractors are to comply with not just the letter of the (California Consumer Privacy Act), but the spirit of the law.”
That is according to a
Continue Reading To Clarify the Meaning of CCPA, CPPA Issues Initial Statement of Reasons for New Regs
During a recent webinar hosted by The Chicago Bar Association, some other panelists and I made some predictions about the future of data privacy.
What is on the horizon?
California Attorney General Rob Bonta has issued statement about protecting health data in mobile apps in view of the upcoming SCOTUS decision in Dobbs. In the process, he also signaled
Continue Reading Keep Your Health Data Secure. And Your App-Hosted Health Data Securer.
If you say you will use information for one purpose, don’t use it for another purpose without getting consent.
The FTC has been saying this for a long time, but
Continue Reading Don’t Say One Thing and Do Another When It Comes to Information
If you are filing a data access request and it is clear that the intention is something other than finding out whether the processing of the data was lawful, the
Continue Reading Beware the Motive Behind a Data Access Request
The old saying went that “if you don’t want it on the front page of the newspaper, don’t put it in an email.” Well, if you don’t want to produce
Continue Reading If You Don’t Want It Released to an Employee, Don’t Put It in Your Employee Files
What can the California Privacy Protection Agency learn from the EU experience as it gets ready to draft regulations regarding DPIAs? Here is a recap of my remarks from the
Continue Reading What Can the California Privacy Protection Agency Learn From Europe?
What do obscenity and data minimization have in common?
As Justice Potter Stewart famously wrote in his concurring opinion to the U.S. Supreme Court’s decision in the 1964 free speech
Continue Reading What’s Data Minimization? As the Saying Goes, You’ll ‘Know It When (You) See It’