On December 1, 2022, the Office for Civil Rights at the U.S. Department of Health and Human Services released a Bulletin on the obligations of HIPAA covered entities and business associates under the HIPAA Privacy, Security, and Breach Notification Rules when using online tracking technologies.
Continue Reading HHS Releases Bulletin on Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates

On November 21, 2022, Meta Platforms, Inc. announced updated practices designed to protect the privacy of young people on Facebook and Instagram, including default privacy settings for new accounts, measures to limit unwanted interactions with adult users, and a tool to limit the spread of teens’ intimate images online.
Continue Reading Meta Announces New Privacy Measures to Protect Teen Users’ Privacy

On November 14, 2022, Google LLC agreed to a $391.5 million settlement with the attorneys general of 40 U.S. states over the company’s location tracking controls available in its user account settings.
Continue Reading Google Agrees to $391.5 Million Settlement with 40 States over Misleading Location Tracking Practices

On September 7, 2022, the Children’s Advertising Review Unit of BBB National Programs announced its finding that Tilting Point Media, LLC, owner and operator of the SpongeBob: Krusty Cook-Off app, violated the Children’s Online Privacy Protection Act and CARU’s Self-Regulatory Guidelines for Advertising and for Children’s Online Privacy Protection.
Continue Reading CARU Finds SpongeBob App in Violation of COPPA and CARU’s Guidelines

On July 11, 2022, the Federal Trade Commission’s Bureau of Consumer Protection issued a business alert on businesses’ handling of sensitive data, with a particular focus on location and health data.
Continue Reading FTC Issues Business Alert on Illegal Use and Sharing of Location, Health and other Sensitive Data