A New York City Council bill amending the New York City Administrative Code to address customer data collected by food delivery services from online orders recently became law. Effective December 27, 2021, the law will permit restaurants to request customer data from third-party food delivery services and permit customers to opt out of the sharing. The law also imposes certain requirements and limitations regarding restaurants’ use and sharing of such data.
Continue Reading New York City to Require Food Delivery Services to Share Customer Data with Restaurants
Legislation
U.S. House Committee Votes to Create New FTC Privacy Bureau and Appropriate $1 Billion to the Agency
Posted on
Posted in Identity Theft, U.S. Federal Law
On September 14, 2021, the U.S. House Committee on Energy and Commerce voted in favor of a legislative recommendation that would create a new FTC privacy bureau as part of the proposed $3.5 trillion federal budget reconciliation package. …
Continue Reading U.S. House Committee Votes to Create New FTC Privacy Bureau and Appropriate $1 Billion to the Agency
UAE Announces New Federal Data Law
Posted on
Posted in International
This week, the United Arab Emirates Minister of State for Artificial Intelligence, Digital Economy and Remote Work Applications announced that the UAE would introduce a new federal data law, the first federal law of its kind in the UAE.…
Continue Reading UAE Announces New Federal Data Law
UK DCMS Identifies Priority Jurisdictions for UK Adequacy Recognition and Proposes New UK Information Commissioner
Posted on
On August 26, 2021, the UK Department of Culture, Media and Sport made news by publishing a document indicating its intent to begin making adequacy decisions for UK data transfers to foreign jurisdictions and by announcing its preferred candidate for the position of new UK Information Commissioner.…
Continue Reading UK DCMS Identifies Priority Jurisdictions for UK Adequacy Recognition and Proposes New UK Information Commissioner
Colorado Privacy Act Signed Into Law
Posted on
Posted in U.S. State Law
On July 8, 2021, Colorado Governor Jared Polis signed SB21-190, the Colorado Privacy Act, into law, making Colorado the third state to have a comprehensive data privacy law on the books, following California and Virginia. This blog entry provides a summary of the Act.…
Continue Reading Colorado Privacy Act Signed Into Law
Senator Gillibrand Announces Renewed Data Protection Act 2021
Posted on
Posted in Online Privacy, U.S. Federal Law
On June 17, 2021, Senator Kirsten Gillibrand (D-NY) announced the reintroduction of the Data Protection Act of 2021, which would create an independent federal agency, the Data Protection Agency, to “regulate high-risk data practices and the collection, processing, and sharing of personal data.”…
Continue Reading Senator Gillibrand Announces Renewed Data Protection Act 2021
Texas Amends Breach Notification Law to Require Public Reporting of Breach Notices
Posted on
Posted in Security Breach, U.S. State Law
On June 14, 2021, Texas Governor Greg Abbott signed HB 3746, a bill amending Texas’s data breach notification law.…
Continue Reading Texas Amends Breach Notification Law to Require Public Reporting of Breach Notices
China Issues Data Security Law
Posted on
After two rounds of public comments, the Data Security Law of the People’s Republic of China was formally issued on June 10, 2021, and will become effective on September 1, 2021. This blog entry provides highlights of the new law.…
Continue Reading China Issues Data Security Law
White House Issues Executive Order on Protecting Americans’ Sensitive Data from Foreign Adversaries
Posted on
Posted in Information Security
On June 9, 2021, President Biden signed an Executive Order on Protecting Americans’ Sensitive Data from Foreign Adversaries, which elaborates on measures to address the national emergency regarding the information technology supply chain declared in 2019 by the Trump administration in Executive Order 13873.…
Continue Reading White House Issues Executive Order on Protecting Americans’ Sensitive Data from Foreign Adversaries
European Commission Publishes Final Version of Updated Standard Contractual Clauses
Posted on
Posted in European Union, International
On June 4, 2021, the European Commission published the final version of the implementing decision on standard contractual clauses for transfers of personal data to third countries under the EU General Data Protection Regulation, as well as the final version of the new standard contractual clauses.…
Continue Reading European Commission Publishes Final Version of Updated Standard Contractual Clauses