On May 29, 2022, the Maryland legislature enacted House Bill 962, which amends Maryland’s Personal Information Protection Act.
Continue Reading Maryland Amends Its Personal Information Protection Act
Personal Information
Canada Re-Introduces Major Federal Privacy Law Reforms
On June 16, 2022, Industry Minister François-Philippe Champagne and Justice Minister David Lametti introduced the Digital Charter Implementation Act, 2022, a bill that would overhaul Canada’s existing legal framework for personal information protection in the private sector. …
Continue Reading Canada Re-Introduces Major Federal Privacy Law Reforms
CIPL Publishes New White Paper on the Approach of British Columbia, Canada to Cross-Border Data Transfers by Public Sector Bodies
On June 10, 2022, CIPL published a white paper entitled “Local Law Assessments and Online Services – Refining the Approach to Beneficial and Privacy-Protective Cross-Border Data Flows A: Case Study from British Columbia.”…
Continue Reading CIPL Publishes New White Paper on the Approach of British Columbia, Canada to Cross-Border Data Transfers by Public Sector Bodies
China Issues Draft Guidelines on Certification of Personal Information Cross-Border Transfer Activities
The National Information Security Standardization Technical Committee of China recently issued a draft version of the Cybersecurity Standard Practice Guidelines – Technical Specification on Certification of Personal Information Cross-border Transfer Activities. This blog entry provides a summary of the Guidelines.
Continue Reading China Issues Draft Guidelines on Certification of Personal Information Cross-Border Transfer Activities
Twitter to Pay $150 Million to Settle Allegations of Data Misuse
On May 25, 2022, Twitter reached a proposed $150 million settlement with the Department of Justice and the Federal Trade Commission to resolve allegations that the company deceptively used nonpublic user contact information obtained for account security purposes to serve targeted ads to users.
Continue Reading Twitter to Pay $150 Million to Settle Allegations of Data Misuse
Connecticut Enacts Consumer Privacy Law
On May 10, 2022, Connecticut Governor Ned Lamont signed An Act Concerning Personal Data Privacy and Online Monitoring, after the law was previously passed by the Connecticut General Assembly in April. Connecticut is now the fifth state to enact a consumer privacy law.
Continue Reading Connecticut Enacts Consumer Privacy Law
FTC Chair Speaks at IAPP Global Privacy Summit
On April 11, 2022, FTC Chair Lina Khan spoke at the opening of the International Association of Privacy Professionals’ Global Privacy Summit on the FTC’s approach to adapting its existing authority to address and rectify unlawful data practices. …
Continue Reading FTC Chair Speaks at IAPP Global Privacy Summit
New York Bar Issues Ethics Opinion on Protecting “Confidential” Client Identity Information on Smartphones
On April 8, 2022, the New York Bar issued an opinion to protect confidential client contact information stored on an attorney’s smartphone. …
Continue Reading New York Bar Issues Ethics Opinion on Protecting “Confidential” Client Identity Information on Smartphones
California Privacy Protection Agency Holds Informational Sessions and Announces Stakeholder Meetings
On March 29 and March 30, 2022, the California Privacy Protection Agency held via video conference two public pre-rulemaking informational sessions regarding the California Privacy Rights Act. The CPPA also recently announced additional meetings with stakeholders via teleconference beginning May 4, 2022.
Continue Reading California Privacy Protection Agency Holds Informational Sessions and Announces Stakeholder Meetings
New Jersey Requires Employers to Notify Employees of the Use of Tracking Devices
On January 18, 2022, New Jersey Governor Phil Murphy signed into law Assembly Bill No. 3950, requiring employers to provide written notice to employees prior to the use of tracking devices in vehicles used by employees. The Act will go into effect on April 18, 2022.
Continue Reading New Jersey Requires Employers to Notify Employees of the Use of Tracking Devices