Kim Phan

Blogs: Consumer Finance Monitor, CyberAdviser, Health Care Reform Dashboard

Latest Articles

California AG releases proposed CCPA regulations

By Kim Phan & Philip N. Yannella on October 14, 2019

The California Attorney General’s Office released its long-awaited proposed CCPA regulations last week. The proposed regulations are 24 pages long, and address a number of important technical compliance issues including how businesses should: provide just in time notice to consumers of personal information collected; provide notice to consumers of the right to opt out of the sale of personal information; provide notice to consumers of financial incentives; provide a CCPA compliant privacy policy; provide methods for consumers to submit requests to…

CyberAdviser

California AG Releases Proposed CCPA Regulations

By Philip N. Yannella, Kim Phan, Gregory P. Szewczyk & Katie Morehead on October 10, 2019

The California Attorney General’s Office released its long-awaited proposed CCPA Regulations this afternoon. The proposed Regulations are 24 pages long, and address a number of important technical compliance issues including how businesses should: provide just in time notice to consumers of personal information collected; provide notice to consumers of the right to opt out of the sale of personal information; provide notice to consumers of financial incentives; provide a CCPA compliant privacy policy; provide methods for consumers to submit requests to…

Consumer Finance Monitor

Facebook to pay $5 billion for violating 2012 FTC consent order

By Philip N. Yannella, Kim Phan & Katie Morehead on July 24, 2019

Just two days after the Federal Trade Commission (“FTC”) announced a historic settlement of privacy and security claims against Equifax, the FTC today announced that Facebook has agreed to pay $5 billion in civil fines, arising from its violation of a 2012 consent order with the FTC. According to the FTC, this is the largest fine ever levied by a U.S. regulatory agency against a company for a privacy or data security violation by a…

CyberAdviser

Facebook to Pay $5 Billion for Violating 2012 FTC Consent Order

By Philip N. Yannella, Kim Phan & Katie Morehead on July 24, 2019

Consumer Finance Monitor

Equifax Reaches Historic $575 Million Settlement Agreement Arising from 2017 Data Breach

By Kim Phan, Philip N. Yannella & Katie Morehead on July 23, 2019

Equifax has agreed to pay $575 million to settle consumer as well as state and federal regulatory claims for its 2017 data breach. This is the largest data breach settlement to date. 2017 Data Breach At the federal level, the FTC and CFPB both filed complaints against Equifax. The FTC complaint alleges Equifax was aware of a security vulnerability in a database containing consumer inquiries about their personal credit data. Equifax did not patch the…

CyberAdviser

Equifax Reaches Historic $575 Million Settlement Agreement Arising from 2017 Data Breach

By Philip N. Yannella, Kim Phan & Katie Morehead on July 23, 2019

Equifax has agreed to pay $575 million to settle consumer as well as state and federal regulatory claims for its 2017 data breach. This is the largest data breach settlement to date.…

Consumer Finance Monitor

SSN identity verification tool being developed; initial enrollment deadline of July 31

By Kim Phan on July 22, 2019

The Social Security Administration (SSA) has announced the development of a portal that would allow financial institutions to join a planned real-time electronic system for verifying the identity of credit applicants. The new Consent Based Social Security Number (SSN) Verification (eCBSV) service will be an important tool in the fight against identity theft and other financial crimes. SSA has traditionally been resistant to the idea that SSNs should serve as the nation’s universal personal identifier. However,…

CyberAdviser

Proposed Amendments to the California Consumer Privacy Act May Limit Scope of the Act

By Philip N. Yannella, Kim Phan & Gina M. Pickerrell on May 15, 2019

Following the speedy enactment of the California Consumer Privacy Act (CCPA or Act) in June 2018, business and consumer advocates alike have been pressuring California lawmakers to clarify the many ambiguities raised by the Act’s sweeping requirements. California lawmakers recently responded to these calls for greater clarity by proposing a slate of amendments to address some of the more controversial provisions of the CCPA, including the definition of “personal information”, requirements regarding information sharing, and…

CyberAdviser

Denmark DPA Rules on How GDPR Applies to Voice Recordings

By Kim Phan on April 18, 2019

The Denmark Data Protection Authority (DPA) ruled on April 11, 2019 that affirmative consent is required when companies record customer telephone calls. Because voice recordings constitute personal data under the European Union’s (EU) General Data Protection Regulation (GDPR), international companies that communicate via telephone with EU customers will need to take steps to ensure GDPR compliance. In this case, Denmark’s largest telecommunications company, TDC A/S, provided disclosures to its customers that calls may be recorded…

CyberAdviser

D.C. Circuit TCPA Decision Gives Industry Partial Victory, but No Certainty

By Kim Phan on March 21, 2018

The decision last week by the U.S. Court of Appeals for the D.C. Circuit on petitions seeking review of the Federal Communications Commission’s 2015 Declaratory Ruling and Order implementing the Telephone Consumer Protection Act (TCPA) represents a partial victory for the industry. In the decision, the D.C. Circuit reversed the FCC’s guidance on the definition of an automatic telephone dialing system going back to 2003, leaving only the TCPA’s statutory definition. That definition does not, on…

Kim Phan

California AG releases proposed CCPA regulations

California AG Releases Proposed CCPA Regulations

Facebook to pay $5 billion for violating 2012 FTC consent order

Facebook to Pay $5 Billion for Violating 2012 FTC Consent Order

Equifax Reaches Historic $575 Million Settlement Agreement Arising from 2017 Data Breach

Equifax Reaches Historic $575 Million Settlement Agreement Arising from 2017 Data Breach

SSN identity verification tool being developed; initial enrollment deadline of July 31

Proposed Amendments to the California Consumer Privacy Act May Limit Scope of the Act

Denmark DPA Rules on How GDPR Applies to Voice Recordings

D.C. Circuit TCPA Decision Gives Industry Partial Victory, but No Certainty

Company

Support

New to the Network