On May 24, 2019, Oregon Governor Kate Brown signed into law Senate Bill 684, which extends Oregon’s data breach notification requirements to include third-party vendors. This blog entry provides an overview of the bill.
Continue Reading
Gramm Leach Bliley Act
Nevada Law Provides Consumers with Limited Right to Opt Out of Sale
Posted on
Posted in Online Privacy, U.S. State Law
On May 29, 2019, Nevada’s governor approved SB 220, which provides amendments to an existing law that requires operators of websites and online services to post a notice on their website regarding their privacy practices. This blog entry provides a summary of the Amendment Bill.…
Continue Reading
FTC Proposes Changes to GLB Privacy and Safeguards Rules
Posted on
Posted in Financial Privacy, U.S. Federal Law
On March 5, 2019, the Federal Trade Commission announced that it is seeking comment on proposed changes to the FTC’s Safeguards Rule and Privacy Rule under the Gramm-Leach-Bliley Act.…
Continue Reading
CCPA Amended: Enforcement Delayed, Few Substantive Changes Made
Posted on
Posted in Online Privacy, U.S. State Law
On August 31, 2018, the California State Legislature passed SB-1121, a bill that delays enforcement of the California Consumer Privacy Act of 2018 and makes other modest amendments to the CCPA. The CCPA introduces key privacy requirements for businesses and its provisions will become operative on January 1, 2020.…
Continue Reading
FTC Approves Settlement with PayPal Regarding Alleged Venmo Privacy Misrepresentations
Posted on
On May 24, 2018, the Federal Trade Commission granted final approval to a settlement with PayPal, Inc., to resolve charges that its peer-to-peer payment service, Venmo, misled consumers regarding certain restrictions on the use of its service, as well as the privacy of transactions. …
Continue Reading
FTC Announces Settlement for Venmo’s Alleged Violations of the GLBA’s Privacy and Safeguards Rules
Posted on
On February 27, 2018, the FTC announced an agreement with PayPal, Inc., to settle charges that its Venmo peer-to-peer payment service misled consumers regarding privacy and the extent to which consumers’ financial accounts were secured. This signals a renewed focus by the FTC on violations of the Gramm-Leach-Bliley Act’s Privacy and Safeguards Rules.…
Continue Reading
FTC Announces Settlement with Tax Prep Service over Financial Privacy and Security Violations
Posted on
On November 8, 2017, the FTC announced a settlement with Georgia-based online tax preparation service, TaxSlayer, LLC, regarding allegations that the company violated federal rules on financial privacy and data security. The FTC charged TaxSlayer with violating the Gramm-Leach-Bliley Act’s Safeguards Rule and Privacy Rule. …
Continue Reading
New Mexico Enacts Data Breach Notification Law
Posted on
On April 6, 2017, New Mexico became the 48th state to enact a data breach notification law, leaving Alabama and South Dakota as the two remaining states without such requirements. The Data Breach Notification Act (H.B. 15) goes into effect on July 1, 2017. …
Continue Reading
FTC Issues Guide for Businesses on Handling Data Breaches
Posted on
On October 25, 2016, the Federal Trade Commission released a guide for businesses on how to handle and respond to data breaches. The 16-page guide details steps businesses should take once they become aware of a potential breach. The guide also underscores the need for cyber-specific insurance to help offset potentially significant response costs.…
Continue Reading
New Jersey Moves Forward With Shopper Privacy Bill
Posted on
On September 15, 2016, the New Jersey Senate unanimously approved a bill that would limit retailers’ ability to collect and use personal data contained on consumers’ driver and non-driver identification cards. The bill, known as the Personal Information and Privacy Protection Act, must now be approved by the New Jersey Assembly.…
Continue Reading