On September 21, 2022, Denmark’s data protection authority Datatilsynet announced its guidance that Google Analytics, Google’s audience measurement tool, is not compliant with the EU General Data Protection Regulation.
Continue Reading Danish DPA Declares Use of Google Analytics Unlawful Without Supplementary Measures
IP Address
Government Security Assessment on Cross-Border Transfer in China
On July 7, 2022, the Cyberspace Administration of China (the “CAC”) issued the Measures on Security Assessment on Cross-border Transfer (the “Measures”), which became effective on September 1, 2022, and provide a six-month grace period to the relevant data handlers. On August 31, 2022, the CAC issued the Guidelines on Application for Security Assessment on Cross-border Transfer (the “Guidelines”), which further clarify certain issues and provide specific application documents for security assessments (including templates of application forms for security assessment on cross-border transfer and self-assessments report for risks of cross-border transfer).…
Continue Reading Government Security Assessment on Cross-Border Transfer in China
Italian Garante Bans Google Analytics
On June 23, 2022, Italy’s data protection authority determined that a website’s use of the audience measurement tool Google Analytics is not compliant with the EU General Data Protection Regulation, as the tool transfers personal data to the United States, which does not offer an adequate level of data protection. …
Continue Reading Italian Garante Bans Google Analytics
Google to Launch Google Analytics 4 in an Attempt to Address EU Privacy Concerns
On March 16, 2022, Google announced the launch of its new analytics solution, Google Analytics 4, which will no longer store IP address.
Continue Reading Google to Launch Google Analytics 4 in an Attempt to Address EU Privacy Concerns
FTC Announces Settlement Regarding Collecting Consumer TV Viewing Data
On February 6, 2017, the FTC announced that it has agreed to settle charges that VIZIO, Inc., installed software on about 11 million consumer televisions to collect viewing data without consumers’ knowledge or consent. The stipulated federal court order requires VIZIO to pay 2.2 million dollars to the FTC and New Jersey Division of Consumer Affairs. …
Continue Reading FTC Announces Settlement Regarding Collecting Consumer TV Viewing Data
CJEU Rules That Dynamic IP Addresses Are Personal Data
On October 19, 2016, the Court of Justice of the European Union issued its judgment in Patrick Breyer v. Bundesrepublik Deutschland, following the Opinion of Advocate General earlier this year. The CJEU followed the Opinion of the Advocate General and declared that the dynamic IP address of a website user is considered personal data.
Continue Reading CJEU Rules That Dynamic IP Addresses Are Personal Data
Texas AG Settles Suit with Messaging App Over Children’s Data Practices
On October 3, 2016, the Texas Attorney General announced a $30,000 settlement with mobile app developer Juxta Labs stemming from allegations that the company engaged in deceptive practices regarding its collection of personal information from children.
Continue Reading Texas AG Settles Suit with Messaging App Over Children’s Data Practices
Advocate General Advises EU’s Highest Court that IP Addresses are Personal Data
On May 12, 2016, the Advocate General of the Court of Justice of the European Union issued an opinion stating that Internet Protocol addresses are personal data.
Continue Reading Advocate General Advises EU’s Highest Court that IP Addresses are Personal Data
CJEU Hears Arguments Regarding Whether IP Addresses are Personal Data
On February 25, 2016, the Court of Justice of the European Union heard arguments on whether or not IP addresses constitute personal data and therefore cannot be stored beyond what is necessary to provide an Internet service.
Continue Reading CJEU Hears Arguments Regarding Whether IP Addresses are Personal Data
Federal Court Finds No Reasonable Expectation of Privacy in Computer Files Shared on a Public Network
On August 1, 2013, a federal district court in Minnesota denied a criminal defendant’s motion to suppress evidence, holding that the defendant had no reasonable expectation of privacy in computer files he had shared on a peer-to-peer network.
Continue Reading Federal Court Finds No Reasonable Expectation of Privacy in Computer Files Shared on a Public Network