The collection of personal data by organizations in the sports industry creates unique data privacy challenges. Generally, a business-to-consumer organization is focused on the personal data of its customers and separately...more
3/15/2023
/ California Privacy Rights Act (CPRA) ,
Collective Bargaining Agreements (CBA) ,
Compliance ,
Data Collection ,
Data Privacy ,
Data Protection Impact Assessments (DPIAs) ,
EU ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Personal Data ,
Revenue ,
Risk Management ,
Sports
This is the second article in a three-part series where Ankura privacy experts analyzed the 40 examples of non-compliance with the California Consumer Privacy Act (CCPA) published by the California Office of Attorney General...more
12/19/2022
/ California ,
California Consumer Privacy Act (CCPA) ,
Consumer Financial Products ,
Department of Health and Human Services (HHS) ,
Financial Services Industry ,
Gramm-Leach-Blilely Act ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare ,
Medical Devices ,
Noncompliance ,
State Attorneys General ,
Telehealth
A new trend in privacy and cybersecurity laws is the introduction of safe harbor clauses for aligning data protection controls to recognized data privacy and cybersecurity frameworks.
OHIO HB376: In July 2021, Ohio...more
8/4/2021
/ California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
NIST ,
Popular ,
Privacy Laws ,
Proposed Legislation ,
Safe Harbors
Organizations are becoming increasingly reliant on external parties to manage parts of their business. The centralized knowledge, expertise, and economies of scale that third parties provide enables organizations to focus...more
7/5/2021
/ Anti-Bribery ,
California Consumer Privacy Act (CCPA) ,
Collaboration ,
Coronavirus/COVID-19 ,
Cybersecurity ,
Due Diligence ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
NIST ,
NYDFS ,
Risk Management ,
Software ,
Third-Party Risk ,
Transparency ,
Vendors
A data inventory is the fundamental building block for an effective privacy program. In its simplest form, a data inventory can be thought of as a matrix which documents 1) what personal data is being collected by the...more
5/27/2021
/ California Consumer Privacy Act (CCPA) ,
Compliance ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Processors ,
Data Retention ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Information Governance ,
Popular