
It’s six days into the new year and we already have four new comprehensive privacy bills from: New York, Kentucky, Tennessee and Oklahoma.
There are a lot
Continue Reading Privacy in the City That Never Sleeps: The New York Privacy BillThe Latest Developments in Global Data Privacy Law, and Data Breach Prevention and Response
It’s six days into the new year and we already have four new comprehensive privacy bills from: New York, Kentucky, Tennessee and Oklahoma.
There are a lot…
Continue Reading Privacy in the City That Never Sleeps: The New York Privacy BillThere’s no mistake, we’re in a recessionary cycle. We can stay out of the politics and debate related to predicting the exact cause, effect, size, and timeline of the recession.
Continue Reading The Impact of Recession on Cybersecurity Programs: Beware of the Trap GameIf your website, app or game targets kids (or sort of targets kids) and you haven’t been taking your obligations under the Children’s Online Privacy Protection Act of 1998 seriously…
Continue Reading FTC Fines Epic Games $520 Million: What You Need to KnowIf you are a GDPR-compliant company, does that mean you can start doing business in the United States with no additional thoughts about privacy?
As Simon Cowell says: “It’s a…
Continue Reading What Does the EU-US “Draftequacy” Decision Mean for Companies Right Now?The European Data Protection Supervisor (EDPS) has submitted comments to FTC Rulemaking on commercial surveillance.
Here are some key takeaways.
IOT devices:
You need a data retention plan. No really.
And not just in the European Union. In California too.
Commission Nationale de l’Informatique et des Libertés (CNIL) has fined messaging platform…
Continue Reading Make Sure You Have a Good Data Retention Plan. You Need It.For deidentification under the traditional laws like HIPAA, removal of identifiers qualifies.
That was a key facet of what I discussed last week on an anonymization panel during the IAPP…
Continue Reading Deidentification vs Anonymization: What Is Enough?Employers should have in place a process to delete former employees’ information – including public facing information and photos – to meet their retention limitation requirements, according to the Belgian…
Continue Reading Caveat Employer? In the EU and California, Employers Must Beware!After the recent Court of Justice of the European Union decision on sensitive inferences that can be drawn from the name of your spouse, it is fair to ask: Is…
Continue Reading Is Everything Sensitive Data?What does the summary judgment granted to Linkedin in the famous Linkedin-HiQ Labs case teach us about data scraping in the US?
Here are some of my thoughts on what…
Continue Reading The LinkedIn-HiQ Labs Case and Data Scraping in the US: Some Takeaways