On November 15, 2022, the Federal Trade Commission announced a six-month extension for companies to comply with certain updated requirements of the Gramm-Leach-Bliley Act’s Safeguards Rule, a set of data security provisions covered financial institutions must implement to protect their customers’ personal information.
Continue Reading FTC Announces Six-Month Extension for Compliance with Some Changes to Gramm-Leach-Bliley Safeguards Rule
U.S. Federal Law
Google Enters into Agreement with DOJ over 2016 Search Warrant Data Loss
On October 25, 2022, the U.S. Department of Justice announced that Google had entered into an agreement to resolve a dispute over the loss of data responsive to a search warrant issued in 2016.
Continue Reading Google Enters into Agreement with DOJ over 2016 Search Warrant Data Loss
First Ever BIPA Trial Results in $228 Million Judgment Against BNSF Railway
On October 12, 2022, a federal jury found BNSF Railway, operator of one of the largest freight railroad networks in North America, violated the Illinois Biometric Information Privacy Act in the first ever BIPA case to go to trial. …
Continue Reading First Ever BIPA Trial Results in $228 Million Judgment Against BNSF Railway
FTC Extends Deadline for Comments on Commercial Surveillance and Data Security Advance Notice of Proposed Rulemaking
On October 14, 2022, the Federal Trade Commission announced it is extending the deadline by one month to submit comments on its Advanced Notice of Proposed Rulemaking on commercial surveillance and lax data security practices.
Continue Reading FTC Extends Deadline for Comments on Commercial Surveillance and Data Security Advance Notice of Proposed Rulemaking
President Biden Issues Executive Order on New EU-U.S. Data Transfer Pact
On October 7, 2022, President Biden signed Executive Order on Enhancing Safeguards for United States Signals Intelligence Activities, which provides a new framework for legal data transfers between the European Union and the United States. …
Continue Reading President Biden Issues Executive Order on New EU-U.S. Data Transfer Pact
Cyber Incident Reporting for Critical Infrastructure Act
The Cybersecurity and Infrastructure Security Agency released a Request for Information seeking public input regarding the recently passed Cyber Incident Reporting for Critical Infrastructure Act of 2022. …
Continue Reading Cyber Incident Reporting for Critical Infrastructure Act
FCC Proposes $3.4 Million in Fines for Violations of Children’s TV Programming Rules
On September 21, 2022, the Federal Communications Commission announced a proposed combined fine of $3.4 million against Sinclair Broadcast Group, Nexstar Media Group and 19 other broadcast television licensees for violations of rules limiting commercial matter in children’s television programming.
Continue Reading FCC Proposes $3.4 Million in Fines for Violations of Children’s TV Programming Rules
FTC Announces Agenda for “Protecting Kids from Stealth Advertising in Digital Media” Event
On September 21, 2022, the Federal Trade Commission announced the agenda for its “Protecting Kids from Stealth Advertising in Digital Media” virtual event to be held on October 19, 2022.
Continue Reading FTC Announces Agenda for “Protecting Kids from Stealth Advertising in Digital Media” Event
CARU Finds SpongeBob App in Violation of COPPA and CARU’s Guidelines
On September 7, 2022, the Children’s Advertising Review Unit of BBB National Programs announced its finding that Tilting Point Media, LLC, owner and operator of the SpongeBob: Krusty Cook-Off app, violated the Children’s Online Privacy Protection Act and CARU’s Self-Regulatory Guidelines for Advertising and for Children’s Online Privacy Protection. …
Continue Reading CARU Finds SpongeBob App in Violation of COPPA and CARU’s Guidelines
OCR Announces $300,000 Settlement Related to Improper Disposal of Physical PHI
On August 23, 2022, the U.S. Department of Health & Human Services, Office for Civil Rights announced that it had settled a case involving the disposal of physical protected health information. …
Continue Reading OCR Announces $300,000 Settlement Related to Improper Disposal of Physical PHI