On February 1, 2020, the Italian Data Protection Authority announced that it had levied a fine of 27.8 Million Euros on TIM S.p.A., a telecommunications company, for several unlawful marketing data processing practices.
Continue Reading Italian Garante Fines Telecom Company 27.8 Million Euros for Unlawful Marketing Practices
Service Provider
CJEU Reaches Decision in Case Involving Cookie Consent under EU Data Protection Law
Posted on
On October 1, 2019, the Court of Justice of the European Union issued its decision in an important case involving consent for the use of cookies by a German business called Planet49.…
Continue Reading CJEU Reaches Decision in Case Involving Cookie Consent under EU Data Protection Law
DOJ Releases a White Paper on the CLOUD Act
Posted on
Posted in U.S. Federal Law
Earlier this month, the U.S. Department of Justice published a white paper entitled “Promoting Public Safety, Privacy, and the Rule of Law Around the World: The Purpose and Impact of the CLOUD Act.”…
Continue Reading DOJ Releases a White Paper on the CLOUD Act
Iowa and Nebraska Enact Information Security Laws
Posted on
Recently, Iowa and Nebraska enacted information security laws applicable to personal information. Iowa’s law applies to operators of online services directed at and used by students in kindergarten through grade 12, whereas Nebraska’s law applies to all businesses doing business in Nebraska who own or license Nebraska residents’ personal information.…
Continue Reading Iowa and Nebraska Enact Information Security Laws
CNIL Fines Rental Car Company for Data Security Failure Attributable to Third-Party Service Provider
Posted on
On July 27, 2017, the French Data Protection Authority imposed a fine of 40,000 euros on a French affiliate of the rental car company, The Hertz Corporation, for failure to ensure the security of website users’ personal data.…
Continue Reading CNIL Fines Rental Car Company for Data Security Failure Attributable to Third-Party Service Provider
New York Publishes FAQs and Key Dates for Cybersecurity Regulation
Posted on
Earlier this month, the New York State Department of Financial Services published FAQs and key dates for its cybersecurity regulation for financial institutions that became effective on March 1, 2017.…
Continue Reading New York Publishes FAQs and Key Dates for Cybersecurity Regulation
New Mexico Enacts Data Breach Notification Law
Posted on
On April 6, 2017, New Mexico became the 48th state to enact a data breach notification law, leaving Alabama and South Dakota as the two remaining states without such requirements. The Data Breach Notification Act (H.B. 15) goes into effect on July 1, 2017. …
Continue Reading New Mexico Enacts Data Breach Notification Law
President Trump Nullifies FCC Broadband Consumer Privacy Rules
Posted on
Posted in U.S. Federal Law
On April 3, 2017, President Trump signed a bill which nullifies the Broadband Consumer Privacy Rules promulgated by the FCC in October 2016 . …
Continue Reading President Trump Nullifies FCC Broadband Consumer Privacy Rules
Webinar Recording Available on the NYDFS Regulations
Posted on
On March 9, 2017, AllClear ID hosted a webinar with Hunton & Williams partner Lisa J. Sotto on the new cybersecurity regulations from the New York State Department of Financial Services. This blog post provides a link to the recording and presentation materials. …
Continue Reading Webinar Recording Available on the NYDFS Regulations
FTC Study Recommends Wider Implementation of DMARC to Combat Phishing Attacks
Posted on
Posted in Information Security, Online Privacy
On March 3, 2017, the FTC announced the results of a study about online businesses’ use of proper email authentication technology to prevent phishing attacks. …
Continue Reading FTC Study Recommends Wider Implementation of DMARC to Combat Phishing Attacks