In this episode of “Lawyers With Game,” host Darius Gambino from Saul Ewing’s Video Gaming and Esports Practice chats with colleagues Sandy Bilus and Evan Foster from Saul Ewing’s Cybersecurity & Privacy group about data...more
Colorado added to the United States’ patchwork approach to data privacy regulation this week. On July 7, Colorado Governor Jared Polis signed into law the Colorado Privacy Act (“CPA”), a sweeping law that creates substantial...more
On June 4, 2021, the European Commission adopted new sets of Standard Contractual Clauses (New SCCs) that organizations can use when transferring personal data protected by the General Data Protection Regulation (GDPR) to...more
On September 21, 2020, a putative class action lawsuit was filed against the President and Fellows of Harvard College, Bank Street College of Education, and the Lower East Side Tenement Museum in connection with an alleged...more
The Court of Justice of the European Union (ECJ) recently declared that the EU-U.S. Privacy Shield, used by thousands of businesses to transfer personal data between the EU and U.S., was invalid. [Case C-311/18, Data...more
In a recent decision, a Virginia federal magistrate judge held that the attorney work product doctrine did not protect from discovery a forensic investigation report created for Capital One in the wake of a 2019 data breach....more
Colleges and universities, like many other organizations, have incorporated automated data collection and predictive analytics into their business models and decision-making processes....more
Last year, the California legislature passed the sweeping California Consumer Privacy Act of 2018 (CCPA), a far-reaching privacy law that will impact business across the country. ...more
10/18/2019
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Opt-Outs ,
Personal Information ,
Popular ,
Privacy Laws ,
Private Right of Action ,
Right to Delete
The United States Office of Management and Budget (“OMB”) recently issued a Compliance Supplement for 2019 that includes, for the first time, audit objectives for colleges and universities concerning compliance with the...more
As the unofficial start of summer begins, Washington and New Jersey have recently enacted two new pieces of cybersecurity legislation. ...more
What can organizations learn from the first year of enforcement of the European Union’s General Data Protection Regulation (GDPR)? Quite a bit, if you pay attention to what the EU government regulators are doing....more
5/30/2019
/ Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Processors ,
Data Protection ,
EU ,
EU Data Protection Laws ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Popular
In a unanimous ruling that is sure to become a landmark in state litigation over data breaches, the Pennsylvania Supreme Court on November 21 held that “an employer has a legal duty to exercise reasonable care to safeguard...more
After coming into effect on May 25, 2018, the European Union’s General Data Protection Regulation (GDPR) poses a compliance challenge to U.S. organizations that handle or control personal data on people who are in the E.U....more
In the wake of the Cambridge Analytica privacy scandal and the recent rollout of the European Union’s General Data Protection Regulation (GDPR), California legislators took action to give California consumers more control...more
As states develop new laws directed at the security of biometric identifiers, such as fingerprints and retina scans, institutions of higher education are likely to face a host of new compliance requirements and increased...more