Insights on Privacy, Data Protection & Data Security

2021 is off to a strong start in privacy legislation with Virginia passing the second state comprehensive consumer privacy law in the US.

Tides of change in the digital advertising and regulatory landscape over the last few years have recently ushered in an increasingly likely future without third-party cookies.

According to the Council of the European Union, there are plans to move forward with replacing the Cookie Directive with the ePrivacy Regulation.

Fraud and abuse regulations have been adapted to meet today’s technology for electronic data, promoting cooperation among health care providers for the exchange of health information and the protection of such information from cyberattacks.

The latest trends and developments in the class action world

Class actions brought under the Illinois Biometric Information Privacy Act (BIPA) continue to trend upward in favor of plaintiffs.

The DCIA was introduced on November 17, 2020, to replace Canada’s current national privacy law for the private sector, the Personal Information Protection and Electronic Documents Act (PIPEDA).

The Commission nationale de l’informatique et des libertés (CNIL) is the national data protection authority in France.

The Federal Trade Commission (FTC) recently announced a settlement with Zoom Video Communications, Inc. (Zoom) after allegations that Zoom misled users through deceptive and unfair practices that made users believe their communications were more secure than they actually were.

The CPRA, also referred to as CCPA 2.0, is a more robust version of the CCPA. The original drafter of the CCPA put CPRA on the ballot to amend and bolster key provisions in the CCPA.

Last week, the New York Department of Financial Services (NYDFS) issued a report about the July 2020 Twitter Hack titled “Report on Investigation of Twitter’s July 15, 2020, Cybersecurity Incident and the Implications for Election Security” (Twitter Report).

The California Consumer Privacy Act (CCPA) is the landmark privacy law in the US that formally went into effect this year and provides California residents with various rights regarding the collection, use, and sharing of their personal information.

The United Kingdom’s Information Commissioner’s Office (ICO) recently released a Code of Practice for Age Appropriate Design on Online Services (Code).

The California Consumer Privacy Act (CCPA), the landmark privacy law making waves since taking effect earlier this year, has continued to evolve as legislators and the California Office of the Attorney General refine and clarify its requirements.

Last week started and ended with big announcements in the privacy world. At the end of the week, on August 14th, the regulations implementing the California Consumer Privacy Act of 2018 (CCPA) were finally declared final - more than 8 months after CCPA became effective and 45 days after the Attorney

The Attorney General Regulations (Regulations) to the California Consumer Privacy Act (CCPA) are enforceable as of August 14, 2020.

With digital advertising being a multi-billion dollar industry and COVID forcing many online, many have growing concerns surrounding the policing of digital advertising.

Several recent actions from regulators in Europe have clarified the requirements surrounding cookie consent on websites, reminding website operators that consent must be freely given, specific, informed, and unambiguous.

The California Consumer Privacy Act (CCPA) went into effect January 1, 2020 and Attorney General enforcement began July 1, 2020.

The California Privacy Rights and Enforcement Act (CPRA) has qualified for the November 3, 2020 ballot, according to a recent update by the California Secretary of State’s office.

The California Consumer Privacy Act (CCPA) went into effect January 1, 2020 and created several rights for California residents, including the game-changing right to opt-out of the sale of personal information.

Please join Arent Fox for a virtual conversation with Representative Hank Johnson (GA-04), the Chairman of the Judiciary Subcommittee on Courts, Intellectual Property, and the Internet, exploring Congress’ next steps.

On May 26, 2020, a Magistrate Judge in the US District Court for the Eastern District of Virginia ordered Capital One to turn over a digital forensic investigation report in a class action arising out of a 2019 cyber incident affecting roughly 100 million US residents.

CCPA enforcement begins July 1, 2020, and depending on the timing of the expedited review, it now may include enforcement for the Attorney General’s Final Regulations.

Companies using payment processors should vet the companies they work with and require reasonable security controls.