Eva Pulliam on Data Security

February Privacy Report: FTC Expands Its Use of “Unfairness” Authority in GoodRx Matter

GoodRx Faces Million Dollar Proposed Penalty from FTC in First Enforcement Action Under the Health Breach Notification Rule - Settlement reveals views on application of unfairness authority to sharing of sensitive...more

3/2/2023 / Artificial Intelligence , Biometric Information Privacy Act , Breach Notification Rule , California Privacy Rights Act (CPRA) , Class Action , Data Privacy , Data Security , FCC , Federal Trade Commission (FTC) , FTC Act , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Breach , NIST , PHI , Risk Management , Rulemaking Process , Settlement , VPPA

January 2023 AFS Privacy Report: Colorado Department of Law Issues Updated Draft CPA Rules

Colorado Department of Law Issues Draft CPA Revisions - On December 22, the Colorado Department of Law issued updates to the draft Colorado Privacy Act (CPA) rules. These revisions build on written comments and feedback from...more

Privacy Report: FTC Publishes Advance Notice of Proposed Rulemaking on Commercial Surveillance and Data Security

FTC Publishes Advance Notice of Proposed Rulemaking on Commercial Surveillance and Data Security - Concerned that companies use secret surveillance practices to collect “vast troves” of consumer information, the Federal...more

8/18/2022 / Advanced Notice of Proposed Rulemaking (ANPRM) , California Consumer Privacy Act (CCPA) , CIPA , Data Security , Department of Justice (DOJ) , Federal Trade Commission (FTC) , Privacy Laws , Rulemaking Process , Sensitive Personal Information , UK , UK Data Protection Act

Moving Closer to a Federal Data Privacy Act: House Subcommittee Advances American Data Privacy and Protection Act To Full...

As more states enact their own privacy laws, members of the privacy community and those impacted by privacy legislation continue to push for uniformity. The American Data Privacy and Protection Act (ADPPA) addresses this...more

7/6/2022 / Biometric Information Privacy Act , Breach Notification Rule , California Consumer Privacy Act (CCPA) , Chief Privacy Officer , Communications Act of 1934 , Consumer Privacy Rights , Data Breach , Data Privacy , Data Protection , Data Security , Federal Data Privacy , Federal Trade Commission (FTC) , Online Safety for Children

Privacy Report: California Privacy Protection Agency Releases Draft CPRA Regulations

California Privacy Protection Agency Releases Draft CPRA Regulations - The California Privacy Protection Agency (CPPA) just released proposed California Privacy Rights Act (CPRA) regulations. The regulations expand...more

Privacy Report: Utah Will Soon Publish US’s Latest Comprehensive State Privacy Law

US News - Utah Will Soon Publish US’s Latest Comprehensive State Privacy Law - The Utah Consumer Privacy Act, also known as Senate Bill 227, recently cleared the Senate and the House. Though there are a few more steps...more

Privacy Update: Best Practices for the Virginia Consumer Data Protection Act

Best Practices for the Virginia Consumer Data Protection Act - The Virginia Consumer Data Protection Act (VCDA) Working Group of the Joint Commission on Technology and Science released its final report on best practices...more

SCOTUS: Accessing Private Database for Improper Purpose Not Violation of Computer Fraud and Abuse Act.

SCOTUS: Accessing Private Database for Improper Purpose Not Violation of Computer Fraud and Abuse Act. In a recent Supreme Court case, Van Buren v. United States, the Court narrowed the applicability of the Computer Fraud...more

Bose Added to List of High-Profile Companies Who Have Suffered Ransomware Attack

Crippling data breaches and sophisticated ransomware attacks are increasingly common threats to modern businesses. Ransomware attacks can not only target confidential company data and data collected from customers but...more

6/14/2021 / California Consumer Privacy Act (CCPA) , California Privacy Rights Act (CPRA) , CDPA , Cyber Attacks , Cyber Crimes , Cybersecurity , Data Breach , Data Collection , Data Privacy , Data Protection , Data Security , Hackers , Malware , Ransomware

Privacy Update: Corporate Boards - Don’t Underestimate Your Role in Data Security Oversight

The Federal Trade Commission (FTC) continues to put emphasis on the importance of corporate board involvement in privacy and data security. Corporate Boards: Don’t Underestimate Your Role in Data Security Oversight - The...more

FTC Zoom Settlement Requires Upgrades to Security

The Federal Trade Commission (FTC) recently announced a settlement with Zoom Video Communications, Inc. (Zoom) after allegations that Zoom misled users through deceptive and unfair practices that made users believe their...more

11/13/2020 / Cybersecurity , Data Protection , Data Security , Employee Training , Federal Trade Commission (FTC) , Settlement Agreements , Third-Party , Zoom®

Prepare the Battlements! What Businesses Need to Know About the NY SHIELD Act

As security risks continue to be at the forefront of legislators’ agendas across the country, New York has joined the growing roster of states pressing businesses to develop more robust breach procedures. Originally proposed...more

10/16/2019 / Biometric Information , Cybersecurity , Data Breach , Data Protection , Data Security , New Legislation , Personal Data , Personal Information , Security and Privacy Controls , SHIELD Act , State Data Breach Notification Statutes

Privacy Report: FTC Takes Action Against Companies Falsely Claiming Compliance With International Privacy Agreements

Federal US News - FTC Takes Action Against Companies Falsely Claiming Compliance With International Privacy Agreements - The FTC reached a settlement with a background screening company over allegations it falsely claimed...more

7/16/2019 / Accreditation , Advertising , Annual Reports , Asia Pacific , Automotive Industry , California Consumer Privacy Act (CCPA) , Code of Conduct , Consumer Information , Consumer Privacy Rights , Cookies , Cross-Border Transactions , Cybersecurity , Data Breach , Data Security , Enforcement Actions , EU , EU-US Privacy Shield , European Data Protection Board (EDPB) , False Statements , Federal Trade Commission (FTC) , General Data Protection Regulation (GDPR) , International Data Transfers , Internet Service Providers (ISPs) , Legal Representatives , New Rules , NIST , Popular , Prior Express Consent , Privacy Laws , Private Right of Action , Proposed Legislation , Right of Access , Right to Be Forgotten , Right to Control , Settlement , State Legislatures , Targeted Digital Advertising , Third-Party Service Provider , UK , UK ICO

FTC Reminds Auto Dealer Vendor to Slow Down & Consider Security

The Federal Trade Commission (FTC) recently released updated data security guidance in connection with a proposed settlement with LightYear Dealer Technologies, LLC (dba DealerBuilt), a service provider for the auto dealer...more

6/26/2019 / Automotive Industry , Car Dealerships , Data Breach , Data Security , Data Storage , Electronically Stored Information , Encryption , Enforcement Actions , Federal Trade Commission (FTC) , Gramm-Leach-Blilely Act , Personally Identifiable Information , Settlement , Third-Party Service Provider , Unfair or Deceptive Trade Practices

Eva Pulliam

ArentFox Schiff

Popular Topics by This Author

Latest Posts › Data Security