Category: Data Security & Privacy
How One Simple Meeting Presages the Future of Federal Prosecution
For many years, it has been the federal government, with its multitude of prosecutorial and regulatory arms, that has been able to throw its policing weight around, causing business owners to snap to attention with a crisp salute. But as the traditional business model has morphed into clouds of technology-driven, international and multinational enterprises, this… Read More
No More Bait and Switch: Subscription-Based Businesses Need to Refine Their Pitch Under California Law
Effective July 1, companies that offer free gift or trial periods for their products or services can no longer bill California consumers automatically at the expiration of the gift or trial period. Companies will be required to provide a “clear and conspicuous” explanation of the price that will be charged—or how the pricing will change—at… Read More
The California Consumer Privacy Act: The Who, What, When, Why…and How.
Make room Europe: California is taking on the data privacy challenge. For the last year or so, the privacy world has been abuzz with how to implement the E.U.’s General Data Protection Regulation. The buzz died down once GDPR went into effect in late May. But no rest for the weary. A little over a… Read More
Facebook and the FTC: A Wake-Up Call for Companies Collecting Personal Data
The FTC is reported to be joining state and international regulators in examining Cambridge Analytica’s actions with data accessed from Facebook, including how the data analytics company obtained the information, what it did with the information, and whether Facebook complied with existing obligations, including a 2012 FTC consent decree. The situation underscores the importance of… Read More
Employer Liability for Data Breaches: Avoid Getting Eaten By Your Own
When a company suffers a data breach, it is hit with a barrage of issues. For instance, How can it safeguard against another breach? Who should it notify of the breach and when (Authorities? The people whose data was compromised?)? What type of measures should it undertake to minimize possible damage to those whose data… Read More
Customer Data Collection: GDPR Changes Everything.
Beginning on May 25, 2018, companies which process the personal data of European Union residents will be expected to comply with the General Data Protection Regulation, or GDPR. Even companies located in the United States are subject to this regulation, and violating its terms may result in class actions and hefty fines. If your company… Read More
GDPR D-Day: If Not Prepared, It Could Cost You Europe
GDPR D-Day: May 25, 2018. If you are not prepared, the results could cost you Europe. In the U.S., we’ve had a pretty business-friendly approach to consumer data protection. And while federal and state authorities have their respective consumer protection laws, there is no single federal law that clearly defines U.S. policy on how consumer… Read More
A Giant Demanding Piece of … Restrictiveness: Do you need to pay attention to the coming GDPR?
GDPR. If you see those letters and think it is an acronym for Gosh Darned Pain in the Rear (or an edgier equivalent) you are in large-part correct. But if you don’t know any more than that, and you are a company with any ties to Europe, then you need to read further. GDPR, the… Read More
The FTC’s Role in Privacy
Acting Chairman of the Federal Trade Commission, Maureen Ohlhausen, answered questions about the FTC’s current role in data privacy before a crowded audience at the April 2017 IAPP Global Privacy Summit in D.C. Below are some take-aways we wanted to share from Commissioner Ohlhausen’s talk: Even if out of ISP oversight, the FTC is actively… Read More
