ARMA International

APRIL 18, 2022

Introduction to Data Protection Laws. Data protection laws, regulations, and rules control the collection, use, transfer, and storage of personal and sensitive information. Personal data protection requirements may be issued by federal, state (provincial), or local governments.

Personal data 100

Personal data GDPR Privacy Records Management 100

Data Matters

NOVEMBER 12, 2019

Similar to what is already required with respect to data security incidents under federal financial and health privacy law, and more broadly under all 50 U.S. It can also eliminate the ability of data subject to exercise choices. Household information. This dedication to “proportionality” seems both important and correct.

Privacy 66

Privacy Data breaches Compliance Personal data 66

Hunton Privacy

JULY 10, 2020

On June 16, 2020, the Litigation Chamber of the Belgian Data Protection Authority (the “Belgian DPA”) imposed a fine on a company (the “defendant”) for unlawful and incorrect processing of personal data and non-compliance with the EU General Data Protection Regulation’s (the “GDPR”) data subject rights provisions.

Compliance 49

Compliance GDPR Marketing Personal data 49

HL Chronicle of Data Protection

MARCH 5, 2020

On January 17, The Belgian Data Protection Authority (DPA) published Recommendation no 01/2020 providing Guidance on direct marketing. The Recommendation provides a methodology on how to comply with the General Data Protection Regulation (GDPR) when conducting direct marketing. Context and Scope of Application. Right to Object.

Marketing 59

Marketing GDPR Personal data Healthcare 59

Data Protection Report

OCTOBER 7, 2020

On 1 October 2020, the UK Information Commissioner’s Office (ICO) published draft statutory guidance , providing clarity about how it will regulate and enforce data protection legislation in the UK. The Guidance. The considerations applied here are well known and replicate those of Article 83(2) of the GDPR.

GDPR 102

GDPR Personal data IT 102

Privacy and Cybersecurity Law

FEBRUARY 14, 2020

On 21 January 2020, the ICO published the Age Appropriate Design Code of Practice. Detrimental Use of Data: You should not use children’s personal data in ways that have been shown to be detrimental to their wellbeing , or that go against industry codes of practice, other regulatory provisions, or Government advice.

Access 59

Access Personal data IoT Privacy 59

Privacy and Cybersecurity Law

FEBRUARY 14, 2020

On 21 January 2020, the ICO published the Age Appropriate Design Code of Practice. Detrimental Use of Data: You should not use children’s personal data in ways that have been shown to be detrimental to their wellbeing , or that go against industry codes of practice, other regulatory provisions, or Government advice.

Access 59

Access Personal data IoT Privacy 59

DLA Piper Privacy Matters

JUNE 4, 2021

Today, the European Commission published the final Implementing Decision on standard contractual clauses (“ New SCCs ”) for the transfer of personal data to third countries. The New SCCs follow the draft implementing decision on standard contractual clauses (“ Draft SCCs ”) issued by the European Commission on 12 November 2020.

GDPR 87

GDPR Personal data Privacy Government 87

DLA Piper Privacy Matters

JULY 29, 2020

Until recently, most decisions of the Belgian Data Protection Authority (Belgian DPA) concerned national companies or individuals. However, on 14 July 2020, the Belgian DPA imposed a fine of EUR600,000 on Google Belgium SA/NV (Google Belgium) for not respecting a Belgian resident’s right to be forgotten.

GDPR 75

GDPR Compliance IT Privacy 75

IT Governance

NOVEMBER 16, 2018

This week, we discuss a Bank of England cyber resilience exercise, the latest cyber security news from the US Office of Personnel Management, the highlights of this month’s Patch Tuesday, and a surprising admission by a Japanese cyber security minister. The ones that affected the unencrypted personal data of 4.2

Risk 44

Risk Encryption Passwords Government 44

Data Matters

JUNE 29, 2018

It is intended to give consumers more transparency regarding and control over their data and establishes highly detailed requirements for what companies that collect personal data about California residents must disclose. . 1, 2020, unless changed in the interim. AB 375 will go into effect on Jan. Right to Know.

GDPR 79

GDPR Privacy Sales Data breaches 79

Hunton Privacy

JUNE 29, 2018

The Act will take effect January 1, 2020. Personal information is defined broadly as “information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.” We previously reported on the relevant ballot initiative.

Privacy 55

Privacy Sales Personal data Security 55

Data Matters

JUNE 29, 2018

It is intended to give consumers more transparency regarding and control over their data and establishes highly detailed requirements for what companies that collect personal data about California residents must disclose. . 1, 2020, unless changed in the interim. AB 375 will go into effect on Jan. Right to Know.

GDPR 60

GDPR Privacy Sales Data breaches 60

HL Chronicle of Data Protection

OCTOBER 26, 2018

According to critics, the new law was never intended to apply to employee data and the resulting language is just an unintended consequence of hasty drafting. Regardless of whether the act should or was intended to apply, there is little disagreement that the CCPA, in present form, facially applies to employee data.

Privacy 40

Privacy Sales Compliance Personal data 40

Data Matters

MARCH 10, 2021

In the meantime, however, the EU Electronic Communications Code (EECC), as of December 21, 2020, has extended the scope of the ePrivacy Directive to cover these services to avoid a gap in the current legislative framework (until the new ePrivacy Regulation is adopted).

GDPR 66

GDPR Metadata Communications Privacy 66

Data Protection Report

JUNE 9, 2022

On 12 May 2022 EDPB adopted Guidelines on the calculation of administrative fines (the Guidelines ). Categories of personal data affected (e.g. Where a subsidiary is directly or indirectly wholly or almost wholly owned by the parent company, the rebuttable presumption is that the parent exercises decisive influence.

GDPR 52

GDPR Compliance Personal data IT 52

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

The CCPA goes into effect January 1, 2020. Below is a history of the CCPA, a summary of its key elements as adopted, including recently adopted technical amendments, and practical takeaways for covered entities as the law moves from passage to 2020 enforcement. Its final status, however, is far from clear. CCPA Background. 17-0039).

Privacy 58

Privacy Sales Compliance Government 58

Data Protection Report

SEPTEMBER 17, 2019

Executive Summary : The wait is over: Only five CCPA amendments with limited scope get passed by the California legislature, leaving the CCPA largely intact to go into effect on January 1, 2020. This will be the version that will go into effect on January 1, 2020. Summary of CCPA Amendments. – § 1798.100.

B2B 40

B2B Privacy Communications Encryption 40

Data Protection Report

JUNE 29, 2018

On June 28, 2018, California lawmakers enacted the California Consumer Privacy Act of 2018 (the “CCPA”) a sweeping, GDPR-like privacy law which is intended to give California consumers more control over how businesses collect and use their data. Consumer access and data portability rights. Prohibited practices.

Privacy 40

Privacy GDPR Personal data Risk 40

Data Protection Report

JUNE 29, 2018

On June 28, 2018, California lawmakers enacted the California Consumer Privacy Act of 2018 (the “CCPA”) a sweeping, GDPR-like privacy law which is intended to give California consumers more control over how businesses collect and use their data. Consumer Access and Data Portability Rights. Prohibited Practices.

Privacy 40

Privacy GDPR Personal data Risk 40

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

The CCPA goes into effect January 1, 2020. Below is a history of the CCPA, a summary of its key elements as adopted, including recently adopted technical amendments, and practical takeaways for covered entities as the law moves from passage to 2020 enforcement. Its final status, however, is far from clear. CCPA Background. 17-0039).

Privacy 58

Privacy Sales Education Compliance 58

Hunton Privacy

JUNE 10, 2020

On June 9, 2020, the French Data Protection Authority (the “CNIL”) published its Annual Activity Report for 2019 (the “Report”). percent of complaints); Failure to comply with individuals’ requests to exercise their data protection rights (about 400 complaints in the employment context); and.

Personal data 86

Personal data Marketing Data breaches Passwords 86

Data Protection Report

JUNE 6, 2019

Businesses already preparing for CCPA should be able to incorporate the Nevada requirements, but note the Nevada law will be effective on October 1, 2019, whereas CCPA goes into effect on January 1, 2020. There is no private right of action under the new Nevada law.

Privacy 40

Privacy Sales Insurance Manufacturing 40

Data Matters

SEPTEMBER 29, 2021

Relatively recent advances in technology — smartphones and social media, in particular — have allowed businesses to collect, store, and find ways to monetize far more personal data than ever before. 12 In other words, the 1983 amendment was seen as limiting the depth rather than the breadth of discovery.13.

Privacy 94

Privacy e-Discovery Computer and Electronics e-Delivery 94

Data Matters

FEBRUARY 19, 2021

The EU GDPR prohibits the transfer of personal data to a country outside the European Economic Area ( EEA ) (otherwise known as a third country ) that is not considered to provide an ‘adequate level’ of data protection by the EC unless ‘appropriate safeguards’ are implemented (e.g., consent of the data subject).

GDPR 66

GDPR Personal data Privacy Access 66

Hunton Privacy

SEPTEMBER 3, 2021

On September 2, 2021, Ireland’s Data Protection Commission (“DPC”) announced a fine of €225 million ($266 million) against WhatsApp Ireland Ltd (“WhatsApp”) for failure to meet the transparency requirements of Articles 12-14 of the EU General Data Protection Regulation (“GDPR”).

GDPR 101

GDPR Compliance Personal data IT 101

Security Affairs

JANUARY 13, 2021

CyberNews researchers analyzed data from multiple social platforms like Parler, Twitter, Facebook, MeWe’s to compare data policies. Alternative social media platforms, also known as “alt” or alt-tech, were catapulted into the spotlight near the end of 2020 due to US President Donald Trump’s claims of election interference.

Data collection 128

Data collection Privacy Analytics Security 128

DLA Piper Privacy Matters

JUNE 18, 2020

The sampling is to determine by June 25 whether the initiative will appear on the November 2020 election ballot – in which case, it is widely expected to be approved. Data breach class action risk for email account credentials. The CPRA is now subject to sampling of the validity of those signatures. What About the CPRA Initiative?

Privacy 84

Privacy Compliance Sales Risk 84