On July 13, 2020, the Federal Trade Commission (FTC) held a workshop titled “Information Security and Financial Institutions: FTC Workshop to Examine Safeguards Rule.” This workshop discussed the proposed amendments to the Gramm-Leach-Bliley Act’s (GLBA) Safeguards Rule, which requires financial institutions to develop, implement, and maintain a comprehensive information security program. The GLBA Safeguards Rule has not been updated since it went into effect in 2003. The workshop explored the cost of information security for…

CyberAdviser

Privacy Shield Invalidated by the European Court of Justice

By Philip N. Yannella, Kim Phan, Gregory P. Szewczyk & Katie Morehead

July 17, 2020

On July 16, 2020, the European Court of Justice (Court) ruled in the “Schrems II” case that the one of the most commonly used cross border data transfer mechanisms between the European Union (EU) and the United States (US), the EU-US Privacy Shield Framework (Privacy Shield), has been invalidated. The Court reasoned that when transferring European data subjects’ personal data to a third country, the business in the third country must be able to protect…

CyberAdviser

FinCEN Issues Advisory on COVID-19 and Imposter and Money Mule Schemes

By Peter D. Hardy, Priya Roy & Terence M. Grugan

July 8, 2020

The Financial Crimes Enforcement Network (“FinCEN”) just issued another Advisory pertaining to two consumer fraud schemes exacerbated by the COVID-19 pandemic. This Advisory focuses on “imposter schemes” and “money mule schemes, ”which we discuss below. This most recent Advisory is the latest in a string of pronouncements relating to the pandemic by FinCEN, which has stated that it regularly will issue such documents. As we have blogged, FinCEN issued an Advisory on May 18…

CyberAdviser

CPRA Poised to Go On November 2020 Ballot

By Philip N. Yannella & Katie Morehead

May 11, 2020

While businesses are busy finalizing CCPA preparations, a new privacy initiative in California called the California Privacy Rights Act (CPRA) may be headed to the November 2020 ballot.…

CyberAdviser

Federal COVID-19 Privacy Legislation to be Introduced

By Kim Phan

May 6, 2020

On April 30th, U.S. Senators from across multiple committees joined together to announce legislation that would protect consumer privacy rights in the wake of the COVID-19 pandemic. Sen. Roger Wicker (R-MS), Chair of the Senate Committee on Commerce, Science, and Transportation; Sen. John Thune (R-SD), Chair of the Subcommittee on Communications, Technology, Innovation, and the Internet; Sen. Jerry Moran (R-KS), Chair of the Subcommittee on Consumer Protection, Product Safety, Insurance and Data Security; and Sen.…

CyberAdviser

What is the Potential Liability for Zoombombing?

By Philip N. Yannella & Gregory P. Szewczyk

April 30, 2020

Ballard privacy and data security lawyers Philip Yannella and Greg Szewczyk have authored an article for the Cybersecurity Law Report discussing the privacy and data security issues raised by Zoombombing, including potential first and third party liability. The article is available to subscribers here. …

CyberAdviser

Planning for the Worst: Privacy, Info Sec, and Bankruptcy

By Gregory P. Szewczyk, Christopher Byer & Ted J. Hartl

April 10, 2020

With the ongoing covid crisis leaving businesses of all sizes concerned about the short and medium term future, the intimidating task of considering a liquidation or restructuring is inevitably starting to become a reality. Although privacy in the bankruptcy context is nothing new—especially in the context of personally identifiable information (“PII”) held by a company—it is an issue that has been overlooked by many companies. However, by taking proactive measures, a business can transform the…

CyberAdviser

Increased Use of Zoom Raises Privacy and Security Concerns

By Philip N. Yannella & Katie Morehead

April 2, 2020

In light of COVID-19, many organizations are taking advantage of free video conferencing capabilities offered by Zoom. Almost overnight, Zoom has become one of the most popular video conferencing services among businesses and schools. Daily Zoom users have skyrocketed from 10 million users in December 2019 to 200 million users in March 2020. …

CyberAdviser

Collecting Personal Information to Combat Coronavirus and the CCPA

By Gregory P. Szewczyk, Kim Phan, Philip N. Yannella & Christopher Byer

March 18, 2020

Businesses subject to the California Consumer Privacy Act (“CCPA”) that have begun exploring the possibility of collecting data from visitors to their facilities to track potential coronavirus exposure and to allow/deny entry must take into consideration the fact that, by doing so, they would almost certainly be collecting data that would constitute personal information under the CCPA. For businesses subject to the CCPA, the question arises as to whether such a practice is permissible. …

CyberAdviser

Disclosing Information about the Novel Coronavirus under HIPAA

By Edward I. Leeds

March 18, 2020

Health care providers, health plans, and others who are subject to HIPAA are sure to have questions about when they may disclose information about individuals who have contracted, or been exposed to, Coronavirus (COVID-19). To address these questions, the Office of Civil Rights, U.S. Department of Health and Human Services, has issued guidance. First, it published a bulletin, reminding us that the privacy rules of HIPAA continue to apply in an emergency while identifying when…

CyberAdviser

Insights from the frontlines of privacy and data security law

Blog Authors

FTC Holds Workshop on GLBA Safeguards Rule

Privacy Shield Invalidated by the European Court of Justice

FinCEN Issues Advisory on COVID-19 and Imposter and Money Mule Schemes

CPRA Poised to Go On November 2020 Ballot

Federal COVID-19 Privacy Legislation to be Introduced

What is the Potential Liability for Zoombombing?

Planning for the Worst: Privacy, Info Sec, and Bankruptcy

Increased Use of Zoom Raises Privacy and Security Concerns

Collecting Personal Information to Combat Coronavirus and the CCPA

Disclosing Information about the Novel Coronavirus under HIPAA

Stay Connected

Company

Products

Support

New to the Network