On September 28, 2020, the U.S. Department of Commerce, along with the U.S. Department of Justice and the Office of the Director of National Intelligence, released a White Paper entitled Information on U.S. Privacy Safeguards Relevant to SCCs and Other EU Legal Bases for EU-U.S. Data Transfers after Schrems II (the “White Paper”). The White Paper outlines privacy safeguards in and updates to the U.S. surveillance provisions flagged by the Court of Justice of the European Union (“CJEU”) in its Schrems II decision. It is intended to serve as a resource for companies transferring personal data from the EU to the U.S. in the wake of the CJEU’s decision overturning the EU-U.S. Privacy Shield. Particularly, it focuses on companies relying on Standard Contractual Clauses (“SCCs”) for data transfers, and provides information to help them determine whether the U.S. ensures adequate privacy protections for companies’ data.
Continue Reading U.S. Government Issues White Paper on Data Transfers after Schrems II Decision
Department of Justice
FCC Proposes Largest Fine in Its History for Telemarketing Violations
On June 9, 2020, the Federal Communications Commission announced a proposed 225 million dollar fine, the largest in the history of the FCC, against several individuals for telemarketing violations. …
Continue Reading FCC Proposes Largest Fine in Its History for Telemarketing Violations
UPDATE: FTC Announces Record-Breaking Facebook Settlement Order
Facebook will pay a $5 billion penalty to the FTC to resolve a privacy probe into whether Facebook violated a prior FTC consent decree requiring the company to better protect user privacy.
Continue Reading UPDATE: FTC Announces Record-Breaking Facebook Settlement Order
Organizational Accountability in U.S. Law and Its Relevance to a Federal Data Privacy Law: A CIPL Study
The Centre for Information Policy Leadership at Hunton Andrews Kurth LLP recently published a white paper on Organizational Accountability’s Existence in U.S. Regulatory Compliance and its Relevance for a Federal Data Privacy Law.
Continue Reading Organizational Accountability in U.S. Law and Its Relevance to a Federal Data Privacy Law: A CIPL Study
DOJ Releases a White Paper on the CLOUD Act
Earlier this month, the U.S. Department of Justice published a white paper entitled “Promoting Public Safety, Privacy, and the Rule of Law Around the World: The Purpose and Impact of the CLOUD Act.”…
Continue Reading DOJ Releases a White Paper on the CLOUD Act
Department of Energy Announces New Efforts in Energy Sector Cybersecurity
On May 14, 2018, the Department of Energy Office of Electricity Delivery & Energy Reliability released its Multiyear Plan for Energy Sector Cybersecurity.
Continue Reading Department of Energy Announces New Efforts in Energy Sector Cybersecurity
DOJ Accuses Iranian Nationals of “Brazen Cyber Assault” on Universities and Government Agencies
The U.S. Department of Justice has unsealed an indictment accusing nine Iranian nationals of engaging in a “massive and brazen cyber assault” against at least 176 universities, 47 private companies and 7 government agencies and non-governmental organizations, including the Federal Energy Regulatory Commission. …
Continue Reading DOJ Accuses Iranian Nationals of “Brazen Cyber Assault” on Universities and Government Agencies
Insider Trading Charges Brought Against CIO for Post-Breach Trading
On March 14, 2018, the Department of Justice and the SEC announced insider trading charges against a CIO of a business unit of Equifax, Inc.
Continue Reading Insider Trading Charges Brought Against CIO for Post-Breach Trading
Federal Court Imposes Record Fine on TV Provider for Do Not Call Violations
On June 5, 2017, an Illinois federal court ordered satellite television provider Dish Network to pay a record 280 million dollars in civil penalties for violations of the FTC’s Telemarketing Sales Rule, the Telephone Consumer Protection Act and state law.
Continue Reading Federal Court Imposes Record Fine on TV Provider for Do Not Call Violations
FTC Announces Settlement Over Alleged Consent Order Violation
On March 17, 2017, the Federal Trade Commission announced that Upromise, Inc., agreed to pay 500,000 dollars to settle allegations that it violated the terms of a 2012 consent order that required Upromise to provide notice to consumers regarding its data collection and use practices, and obtain third-party audits.
Continue Reading FTC Announces Settlement Over Alleged Consent Order Violation