On April 19, 2022, the Better Business Bureau’s (BBB) Center for Industry Self-Regulation introduced the TeenAge Privacy Program (TAPP), an emerging initiative that sets out to help companies develop a teen-centric approach...more
5/4/2022
/ Behavioral Advertising ,
Better Business Bureau ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Consent ,
COPPA ,
Data Retention ,
Data-Sharing ,
Federal Trade Commission (FTC) ,
Online Advertisements ,
Online Platforms ,
Parental Consent ,
User-Generated Content
In our third California Privacy Update, we continue to closely follow potential privacy law updates in California. ...more
On April 20, 2022, Connecticut’s Senate passed S.B. 6, an Act concerning Personal Data Privacy and Online Monitoring. The comprehensive privacy bill will now move to the Connecticut House, where it has the potential to become...more
On April 21, 2022, the U.S. Department of Commerce Secretary Gina Raimondo (the “Department”) announced a key development in international collaboration concerning cross-border data flows with the newly created Global...more
Colorado, as the third U.S. state to adopt a comprehensive privacy law, is making significant strides in its rule-making activities. On April 12, 2022, the Colorado Attorney General’s Office issued prepared remarks from...more
On March 29 and March 30, 2022, the Board of the California Privacy Protection Agency (CPPA or “Agency”) conducted informational sessions on the California Privacy Rights Act (CPRA) and allowed public comment on its...more
On March 18th, 2022, Sri Lanka enacted the Personal Data Protection Act, No. 9 of 2022 (the “Act” or “PDPA”) thereby becoming the first South Asian country to enact comprehensive data protection legislation. The law is...more
On March 25, 2022, US President Joe Biden and European Commission President Ursula von der Leyen made the long-awaited announcement that the United States and the European Union have agreed, in principle, to the...more
Several comprehensive privacy bills are being considered at the state level. This blog post provides notable updates on bills companies should be paying attention to as they move through their respective legislatures....more
In the latest of a flurry of FTC actions, the agency recently announced that it had entered into a consent order with CafePress, an online customized merchandise platform, over allegations that it failed to secure consumers’...more
3/22/2022
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Security ,
Federal Trade Commission (FTC) ,
FTC Act ,
NIST ,
Personal Information ,
Popular ,
Unfair or Deceptive Trade Practices
In the first of its kind “opinion” from the California Office of the Attorney General (“OAG”), the agency addressed the question of whether a consumer’s “right to know” what personal information a business holds about the...more
The Virginia Consumer Data Privacy Act (CDPA) - which is set to go into effect on January 1, 2023 - will likely be amended in the coming days. The Virginia House and Senate have passed four amendments which, most notably,...more
The Federal Trade Commission (FTC) reached a settlement with WW International Inc., formerly known as Weight Watchers (WW), over allegations that the company collected children’s information without parental consent in...more
Utah is close to becoming the fourth state to have a comprehensive privacy law. The Utah Consumer Privacy Act (SB 227) unanimously passed the Utah Senate on February 25. And the Utah House followed suit quickly, unanimously...more
Several comprehensive privacy bills are being considered at the state level. This blog post provides notable updates on bills companies should be paying attention to as they move through their respective legislatures....more
In our second California Privacy Update, we continue to closely follow updates in California privacy law, especially those to the California Privacy Rights Act (CPRA). Below are the recent updates to the California’s privacy...more
The European Commission has presented its draft Data Act, which will affect a broad range of companies and heavily emphasizes data accessibility and fairness. Companies should begin to evaluate their current practices and...more
Several comprehensive privacy bills are being considered at the state level. This blog post provides notable updates on bills companies should be paying attention to as they move through their respective legislatures. We will...more
Last week, two bills were proposed in Congress aimed at improving consumer privacy protection. These proposals focus on specific areas of privacy law – health data that falls outside of HIPAA and do-not-track signals....more
French regulators have held that the use of Google Analytics violates the GDPR, a decision that likely has broad implications for web analytics companies and website operators.
On February 10, 2022, the French Data...more
2/16/2022
/ Analytics ,
CNIL ,
Corporate Counsel ,
Data Protection Authority ,
Facebook ,
FISA ,
France ,
General Data Protection Regulation (GDPR) ,
Google ,
International Data Transfers ,
Schrems I & Schrems II
The California Consumer Privacy Act (CCPA) may seem like old news, especially now that Virginia and Colorado have also passed comprehensive privacy laws, but businesses must continue to pay attention to California if they...more
The Colorado AG recently provided guidance on data security best practices. Companies doing business in Colorado, especially those subject to the Colorado Privacy Act, should be paying attention to what is required under...more
Businesses that transfer personal data to and from the United Kingdom will soon have clarity regarding transfers from the UK to recipients outside the EU/EEA.
On February 2, 2022, the United Kingdom Secretary of State...more
Last week, the Belgian Data Protection Authority ruled that the IAB’s cookie consent framework violated the GDPR. This decision has tremendous potential implications on the ad tech industry, as both publishers and advertisers...more
2/8/2022
/ Adtech ,
Advertising ,
Belgium ,
Consent ,
Cookies ,
Data Controller ,
Data Protection Authority ,
EU ,
General Data Protection Regulation (GDPR) ,
Online Advertisements ,
Publishers
As we had written about previously, there are several comprehensive privacy bills being considered at the state level. This blog post provides notable updates on bills companies should be paying attention to as they move...more