WilmerHale

WilmerHale is a leading, full-service international law firm with 1,000 lawyers located throughout 13 offices in the United States, Europe and Asia. Our lawyers work at the intersection of government, technology and business, and we remain committed to our guiding principles of: providing quality, world-class legal and client services; developing diversity among our lawyers and staff; fostering an environment that promotes an entrepreneurial spirit, collaboration and collegiality by drawing on the exceptional talents and varied experience of our lawyers; encouraging lawyers and staff to perform public service and give back to the community through pro bono work, government service, service to the bar, teaching, and supporting public institutions and charitable organizations; and hiring and retaining exceptionally talented lawyers who possess the common trait of outstanding academic and personal achievements.

Latest from WilmerHale

Since our reports on February 20, 2019 and April 30, 2019, no states have followed California in adopting comprehensive privacy legislation but three states have enacted targeted privacy laws. In May Nevada enacted a law giving consumers the right to opt out of the sale of their personal information. Maine put on its books a law restricting Internet service providers’ use of subscribers’ personal information. And Montana limited the use of data collected from…
In recent months, the Office of the Information Commissioner of the UK (“ICO”) has been looking into how personal data is used in real time bidding (“RTB”) in programmatic advertising, involving key stakeholders, including in fact-finding forum on March 6 to understand the marketplace and the application of the GDPR to it. On June 20, the ICO published its Update report into adtech and real time bidding, which summarizes its findings so far. Key…
On June 12, 2019 Lightyear Dealer Technologies LLC, a company that provides data storage for many of the nation’s largest auto dealers, stipulated to an Order with the Federal Trade Commission (FTC) resulting from a 2016 data breach that allegedly affected almost 70,000 people. The settlement resulted in a proposed FTC order that imposes standard injunctive provisions on the company, including the development of a comprehensive information security program and submission to bi-annual information security…
On May 1, 2019, the Senate Commerce Committee held a hearing on “Consumer Perspectives: Policy Principles for a Federal Data Privacy Framework”—the Committee’s third hearing during this session discussing principles for comprehensive federal privacy legislation. You can read our reports on the earlier hearings here and here. A full transcript of the most recent hearing is available here. Helen Dixon, Data Protection Commissioner of Ireland Neema Singh Guliani, Senior…
Since our February 20, 2019 report on privacy bills moving through state legislatures around the country, four new bills modeled on the California Consumer Privacy Act (CCPA) have been introduced—in Connecticut, New York, Pennsylvania and Texas—and many of the previously described bills have moved further along in the legislative process. Washington’s Privacy Act, which previously seemed likely to be the first state enactment to follow in the CCPA’s wake, failed to make it out of…
On Friday, March 15, 2019, the Federal Trade Commission released its Privacy & Data Security Update: 2018, highlighting its privacy and data security enforcement actions and other activities last year.   Notable Privacy Enforcement Actions On the privacy side, one of the FTC’s largest actions involved a joint effort with the state of Nevada to obtain a final court order against MyEx.com, an alleged revenge porn website.  The order shut down the website and required…
This week both the House and Senate held hearings kicking off the legislative process for federal privacy legislation. Legislators from both parties voiced support for comprehensive and bipartisan legislation. Most of the witnesses were representatives of industry associations, joined by privacy advocates and one professor. As suggested in our recent preview report, the central points of discussion included: (i) the extent to which the California Consumer Privacy Act (CCPA) and the European Union’s General…
The European Data protection Board (“EDPB”), which is composed of representatives of the national data protection authorities and the European Data Protection Supervisor, unveiled a two-year work program on February 12, 2019. This program provides an outlook and a roadmap regarding the EDPB’s priorities for the coming two years. Guidelines. The EDPB plans to release 17 sets of guidelines by 2020, including on the following topics. The interplay between European payment services rules (“PSD2”) and…
On January 23, 2019, the European Data Protection Board (“EDPB”), which is composed of representatives of the national data protection authorities and the European Data Protection Supervisor, adopted an Advisory Opinion (“Opinion”) on the interplay between the EU Clinical Trials Regulation (“CTR”) and the General Data Protection Regulation (“GDPR”). The Opinion was provided in response to a European Commission (“EC”) request to comment on a draft Q&A document on this issue. We already highlighted in…