California Consumer Privacy Act: GDPR-like definition of personal information

Data Protection Report

This blog focuses on the CCPA’s broad definition of Personal Information. The California Consumer Privacy Act (“CCPA” or the “Act”) sets a new precedent with its sweeping definition of Personal Information (“PI”). This definition of PI greatly expands on the narrow definition of what constituted PI under previous California state laws. While the definition of PI is sweeping, the Act does set out several carve outs.

New Case Sheds Further Light on the Definition of Autodialer under the TCPA

Data Matters

The FCC had said in orders in 2003 and 2008 that the TCPA’s definition of auto-dialer was broad enough to cover predictive dialers. Unconstrained by the underbrush of the FCC’s earlier rulings, the court went on to interpret the statutory definition of auto-dialers. The post New Case Sheds Further Light on the Definition of Autodialer under the TCPA appeared first on Data Matters Privacy Blog. Ever since the D.C.

HR’s culture shift: Tackling workplace sexual harassment while navigating legal definitions

Information Management Resources

Human resources professionals are looking to fight bad behavior driven by upper management. Sexual harassment in the professional workplace PH sexual harassment Sexual harassment Workforce management Employee relations Workplace culture Workplace safety and security

Searching for definition | ZDNet

Collaboration 2.0

Searching for definition By Oliver Marks | June 15, 2008, 10:51pm PDT Summary A recurring theme for me at the Enterprise 2.0 ′ in 2006, called on attendees to log on to Wikipedia and edit its definition.

The Principles of Recordkeeping Primer: Accountability

The Schedule

Definitions of Accountability. ” DefinitionA primer is a small, introductory book on a given subject. They used to be part of every child’s education. The New England Primer (ca. 1690), was the first to be printed in North America.

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

As a starting point, determine whether the company qualifies as a business under the CCPA’s definition or if it may be subject to the CCPA by its relationships with for-profit businesses. The CCPA’s definition for “deidentified” data differs from traditional standards.

Who’s spreading the news?

InfoGovNuggets

Data quality Information Governance Definition Controls Third parties Internal controls Culture Compliance Oversight Duty Accuracy Compliance (General “Egypt Send Actress to Jail for ‘Fake News,'” The Wall Street Journal , October 1, 2018 A9. Woman posting video on Facebook claiming sexual harassment posted on Facebook sentenced to two years in jail. Publishing fake news with intent of toppling regime. Egypt has some problems with sexual harassment. Appeal expected.

Video 28

Labels

InfoGovNuggets

Data quality Information Definition Analytics“Senator Releases DNA Test Results,” The Wall Street Journal , October 16, 2018 A4. Senator Elizabeth Warren released DNA results about her ancestry. Facts are facts. And labels are labels, and not necessarily facts. How much of a certain DNA do you need to have to be a minority, entitled to affirmative action? So, the blood results are information. But who has the power to decide who is and who is not a Native American?

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

As a starting point, determine whether the company qualifies as a business under the CCPA’s definition or if it may be subject to the CCPA by its relationships with for-profit businesses. The CCPA’s definition for “deidentified” data differs from traditional standards.

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

As a starting point, determine whether the company qualifies as a business under the CCPA’s definition or if it may be subject to the CCPA by its relationships with for-profit businesses. The CCPA’s definition for “deidentified” data differs from traditional standards.

California Consumer Privacy Act: The Challenge Ahead — Key Terms in the CCPA

HL Chronicle of Data Protection

We thus focus here on detailing some of the CCPA’s key definitional terms, organized into topical categories. As we describe below, the CCPA’s definition of “consumer” is limited to California residents.

Sales 52

Sexual assault

InfoGovNuggets

Compliance (General) Controls Definition Duty Governance Information Internal controls Privacy Third partiesI hesitated to discuss the Kavanaugh hearings as an information governance teaching case, due to the raw political nerves. Another case presented itself. “A Sexual-Assault Claim Spotlights National Dilemma,” The Wall Street Journal , October 15, 2018 A1.

Loose Lips, Volume III

InfoGovNuggets

Information Governance Communications Definition Controls Compliance Duty Employees Corporation Compliance (General “Egypt Passes Media Law Targeting ‘Fake News,'” The Wall Street Journal , July 17, 2018 A18. Traditional media and larger social media outlets now subject to penalties for spreading fake news, defaming, or inciting hatred. Think how quiet the TV would be in the US if there was a similar law here. Oh, wait. We still have the First Amendment.

Location information

InfoGovNuggets

Information Ownership Value Definition Controls Access Duty Corporation TechnologyApparently, if you’re on Verizon, 75 companies know where your phone is. Is that worth anything to anybody? Who owns that information and who can sell/rent it? “Third Parties Know Exactly Where You Are,” The Wall Street Journal , July 16, 2018 B4. Well, I like to have Uber and Google Maps know where I am. And FindMyPhone. Who else? Do I control that?

IT 28

Privacy

InfoGovNuggets

Security Privacy Information Ownership Governance Policy Definition Duty of Care Controls Third parties Internal controls Access Duty Corporation Technology“Alphabet, Apple Prodded On Privacy,” The Wall Street Journal , July 10, 2018 A3. Congress asks how Google and Apple use “your” information, such as what you say and write and where you are. Which is more interesting, the questions or the answers?

Labels

InfoGovNuggets

Information Governance Communications Definition Controls Third parties Internal controls Culture AccuracyLabels are shorthand. Does the person using the label mean the same thing as you do? “For Some Bonds, It’s Too Easy Being Green,” The Wall Street Journal , August 20, 2018 B1. A quarter of Chinese bonds marketed as green bonds were rejected by “a de facto watchdog for the market” as not really being environmentally friendly.

Loose lips, revisited

InfoGovNuggets

Accuracy Communications Compliance Compliance (General) Controls Corporation Definition Duty Employees Governance Information Internal controls Investor relationsThe prior post was about what you say and in what medium. So’s this one. “SEC Probes Musk Tweets On Possible Tesla Buyout,” The Wall Street Journal , August 9, 2018 A1. Were Elon Musk’s tweets about having lined up financing for a buyout false or misleading? The SEC may want to know.

23 & you

InfoGovNuggets

So, add genetics to the definition of “information.” ” Privacy Data quality Information Ownership Governance Policy Definition Controls Third parties Analytics Access Duty CorporationLots of positives from sharing your genetic information online. You can find distant relatives and explore your heritage. Or locate a serial killer. “Use of Database Raises Questions,” The Wall Street Journal , April 30, 2018 A6.

Conflicts as information

InfoGovNuggets

Access Accuracy Compliance Compliance (General) Controls Corporation Definition Duty Duty of Care Governance Information Internal controls Lawyers Oversight Third parties To report“McKinsey Held Back Chapter 11 Positions,” The Wall Street Journal , June 20, 2018 B1. Consultant advises in bankruptcy proceedings while holding undisclosed interests in the outcomes. Did McKinsey not know that they had these investments? Did they not have a process for checking for conflicts?

Fraudster

InfoGovNuggets

Board Communications Compliance Compliance (General) Controls Corporation Culture Data quality Definition Directors Duty Duty of Care Employees Governance Inform shareholders Information Internal controls Investor relations Oversight Protect information assets“Theranos Settle Investor Suit As Firm Runs Low on Funds,” The Wall Street Journal , July 23, 2018 B3. Investors alleged Theranos had defrauded them by making false statements about the company’s technology.

Programming flaw

InfoGovNuggets

IT Information Governance Definition Interconnections Controls Internal controls Oversight Accuracy TechnologyIf your business includes programming software to perform certain tasks, you no doubt have quality control processes. Are those processes “information governance”? “Software Flaw Trips Fiat Chrysler,” The Wall Street Journal , May 26, 2018 B1. Short circuit could prevent you from disengaging the cruise control. Results in recall of 5.3 million vehicle.

Fake news

InfoGovNuggets

Accuracy Controls Corporation Definition Duty Information Internal controls Third partiesIs identity part of Information? Does accuracy matter? “Senators’ Identities Misused On Site,” The Wall Street Journal , May 23, 2018 A2. People apparently spoofed the names of two US Senators when making comments on an FCC website seeking views on net neutrality. Apparently, nearly 8,000 other people made the same complaint. Can you trust what you read on the Internet?

Car 54, Where Are You?

InfoGovNuggets

Privacy Information Ownership Definition Controls Third parties Internal controls Access Duty CorporationIs where you are “information”? If so, who owns it? Can one piece of information be owned by more than one person, at the same time? Is this something unique about “information” generally? “Phone Giants Cut Off Two Location Services,” The Wall Street Journal , June 20, 2018, A1.

Phone companies can’t conspire, can they?

InfoGovNuggets

Information Ownership Definition Interconnections Controls Internal controls Access“Probe Focuses on Cellphone IDs,” The Wall Street Journal , April 21, 2018 B1. DOJ investigates. Are phone companies (and a standard-setting company) conspiring to make it harder for you to keep your phone number if you change carriers? Or are they trying to make phones smaller? Is your phone number information? If so, to whom does it belong?

IT 28

What’s information worth?

InfoGovNuggets

Security Information Value Governance Definition Protect assets Controls Internal controls Board Protect information assets Duty Corporation“Cryptocurrency Exchange to Pay Back Customers,” The Wall Street Journal , January 29, 2018 B4. Company to pay customers back $426 million after hack of cryptocurrency. What is cryptocurrency except information that people agree has a certain value? If that information is hacked, isn’t it the same as a theft of a client account?

IT 28

Falsely shouting fire?

InfoGovNuggets

Data quality Information Governance Definition Controls Third parties Duty Accuracy Government“FCC Proposes Revamp Of Online Documents,” The Wall Street Journal , July 12, 2018 A3. Proposed revision to process for receiving public comments after fake comments filed in the net neutrality discussion. How does the government restrict our ability to lie to the government where the payment of money or the issuance of a license is not at issue?

Extra credit reading

InfoGovNuggets

Collect Definition Information Operations Use ValueInteresting Journal Report on health care technology. Several articles on new uses of information, or uses of new information, in order to do everything from brain surgery to looking after aging parents. Headlines: “Augmented Reality Gives Brain Surgeons a Better View,” The Wall Street Journal , May 29, 2018 R1. “AI Tools Help the Blind Tackle Everyday Tasks,” The Wall Street Journal , May 29, 2018 R4.

Tools 28

Bypass on the Information Highway

InfoGovNuggets

Data quality Information Governance Communications Policy Definition Access Duty AccuracyThe President isn’t the only one who seeks to reach the audience direct. “Musk Hits At Media For Tesla Coverage,” The Wall Street Journal , May 24, 2018 B4. Elon plans a site where the public can rate the credibility of news sources. If “the media” continues to get targeted for fake news, where will people go for their news? Facebook?

Face the facts

InfoGovNuggets

Analytics Compliance Compliance (General) Controls Corporation Definition Duty Governance Government Information Internal controls Third parties“Amazon’s Tool for Facial Recognition Fans Privacy Fears,” The Wall Street Journal , May 23, 2018 B4. People reach to Amazon’s sale of facial recognition technology to law enforcement authorities, fearing such technology might be misused.

Sales 28

Who’s who?

InfoGovNuggets

Information Ownership Value Definition Controls Analytics Access Accuracy“Scientists Build a Family Tree of Millions,” The Wall Street Journal , March 2, 2018 A3. Scientists use information posted by people searching for relatives to build “a database of 13 million people related across 11 generations, based on 86 million public profiles.” ” Who owns your family tree? How will this information be used, and by whom? What’s it worth?

More on family information

InfoGovNuggets

Compliance Definition Governance Information Oversight Value“Family Ties Are Probed At the Border,” The Wall Street Journal , March 3, 2018 A3. People claiming to be family are probed on information on accompanying children. Of course your son’s birthday is information. If you don’t know that, are you more or less likely to be his father/mother? If you’re the government agent, how do you determine if the relationship is legitimate?

It depends what you mean by “lost”

InfoGovNuggets

Accuracy Controls Data quality Definition Information RequirementsWhen someone touts numbers, what do they really mean? “Your Lost Luggage May Not Count as Lost,” The Wall Street Journal , November 16, 2017 A12. The “official” figures on how many pieces of luggage each airline misplaces are different than how many bags get lost. The government defines the operating statistics that must be reported. Are your sufficiently critical when someone gives you numbers?

Down under

InfoGovNuggets

Compliance Compliance (General) Controls Corporation Definition Duty Governance Information Internal controls Requirements Third partiesBanks normally monitor ( i.e. , manage) money transfers ( i.e. , information), in part to make sure that nefarious people are not transferring money to other nefarious people. Apparently, they needed to monitor ( i.e. , manage) who their customers are ( i.e. , information).

Bait and switch?

InfoGovNuggets

Risk Information Governance Definition Protect assets Duty of Care Who is in charge You make some promises, or strong indications, to a star performer that he or she is so above average, next year you will get a year early. Fill in the blank]. How do you handle a change in direction? “Goldman’s Rising Stars Told to Hold,” The Wall Street Journal , May 26, 2018 B9.

Private speech v. public speech

InfoGovNuggets

Information Governance Policy Definition Controls Third parties Internal controls Compliance Oversight Duty Employees Corporation Risk assessment Compliance (General) Who is in charge Can your employer restrict what political statements you make in the course of your employment, when you’re getting paid to wear your company shirt on television? Maybe. “NFL Adopts New Anthem Policy,” The Wall Street Journal , May 24, A14.

Bargain

InfoGovNuggets

IT Security Information Ownership Value Definition Access“You’re Being Tracked, and Hackers Loom,” The Wall Street Journal, March 5, 2018 B1. If an app can track your location, the app can sell that data to others. This explains why the ads you get are context-appropriate. Who owns the data of where you are? Who get’s paid for selling it? Is there a connection between the two?

Data 28

Who captures the metrics?

InfoGovNuggets

Accuracy Analytics Data quality Definition Information Value“Nielsen Acknowledges It Misses ‘Live’ Streamers,” The Wall Street Journal December 7, 2017 B3. Networks don’t get full credit on the viewing statistics (number of viewers for a particular show) for all the live viewers. Apparently, those viewers who stream certain broadcasts aren’t fully counted.

IT 28

Wells Fargo, continued

InfoGovNuggets

Information Governance Communications Definition Controls Internal controls Culture Management Compliance Duty Employees Communicate“Wells Fargo Fires A Top Official, The Wall Street Journal , November 18, 2017 B1. Head of commercial lending canned because he said bad things to a fellow employee about regulators (and how they were affecting golden parachute payments). Think about that. He didn’t write it down; he just said it. Not outside the company, even.

IT 28

Vendors

InfoGovNuggets

Accuracy Board Compliance Compliance Verification Controls Corporation Data quality Definition Directors Duty Duty of Care Employees Governance Information Internal controls Oversight Protect assets Protect information assets Third parties Value Vendors“U.S. Probes Supplier to VW,” The Wall Street Journal , February 1, 2018 B2.

Blog 28

Law school exam question

InfoGovNuggets

Definition Information ValueI was struck by the headline: “CFTC Takes Aim At Crypto Fraud,” The Wall Street Journal, Saturday January 20, 2018 B5. The article is about the government charging people with fraud in connection with bitcoin futures. Forget about the article for a second, as that’s not my point. When the currency has no inherent value, is the information that the bitcoin represents itself something of value? And that value can change.

It’s all about networks

InfoGovNuggets

Access Analytics Communications Controls Corporation Definition Duty Governance Information Internal controls Oversight Ownership Privacy Protect assets Security Third parties Value Vendors“Facebook Breaks Its Silence, Admits to ‘Mistakes,'” The Wall Street Journal , March 22, 2018 A1. Facebook takes fire for use of Facebook’s data on 50 million users by outside app developers and others. One analyst points to “systemic mismanagement.”

Data 28

A handful for May Day

InfoGovNuggets

Access Accuracy Analytics Communications Compliance Compliance (General) Controls Corporation Data quality Definition Duty Duty of Care Employees Governance Information Internal controls Oversight Ownership Privacy Protect assets Protect information assets Technology To report ValueA departure from the one-story-one-post approach. “Israel Targets Iran Accord,” The Wall Street Journal , May 1, 2018 A1.

LifeLock Bug Exposed Millions of Customer Email Addresses

Krebs on Security

“If I were a bad guy, I would definitely target your customers with a phishing attack because I know two things about them,” Reese said. Plus, I definitely think the target market of LifeLock is someone who is easily spooked by the specter of cybercrime.”