Data Counsel

Commentary Addressing Risks and Opportunities Through the Lifecycle of Data, Technology, Advertising and Innovation

Justin T. Yedor and Jeewon Serrato

On October 5, 2021, Jennifer Urban, who serves as Chair of the Board the California Privacy Protection Agency (the CPPA) spoke with members of the California Lawyer’s Association about the Board’s work to get
Continue Reading California Privacy Protection Agency Board Chair Discusses CPRA Rulemaking Process and Agency Authority

By: Linda Goldstein, Amy Mudge, Randy Shaheen, Jack Ferry and Matt Renick

The Federal Trade Commission (FTC or Commission) announced on Oct. 13 a widespread enforcement action against deceptive endorsement practices. The Commission sent a Notice of Penalty Offenses to
Continue Reading FTC Puts 700+ Companies on Notice to Expect to Pay Penalties for Any Endorsement Violations

The 2021 edition of BakerHostetler’s annual Data Security Incident Response Report – a report based on the firm’s experience with data security incident response and litigation over the past year – features a number of important insights previously covered in
Continue Reading The Impact of Data Security Incident Trends on Commercial Transactions: Part II – Development Agreements

Authors: Marshall Mattera, Jeewon Serrato, Casie Collignon and Stanton Burke

Since the Jan. 1, 2020 kickoff for private enforcement under the California Consumer Privacy Act (CCPA), plaintiffs have filed scores of class actions invoking the CCPA. Such claims,
Continue Reading 8 Key Takeaways for Initial Defenses Under the CCPA and CPRA

More than eight months into the Biden administration, the U.S. Department of Health & Human Services (HHS) announced the appointment of Lisa J. Pino as the new director of the Office for Civil Rights (OCR) on Sept. 27, 2021.

As
Continue Reading New Director of HHS Office for Civil Rights Announced: What could Lisa J. Pino’s appointment mean for future HIPAA enforcement?

On June 16, 2021, the Connecticut General Assembly adopted an expanded version of Connecticut’s data breach notification statute (2021 CT H.B. 5310 (NS)). Through this expansion, Connecticut’s data breach notification statute will be updated, effective Oct. 1, 2021, to (1)
Continue Reading Effective Oct. 1, 2021: Connecticut Expands Data Breach Notification Statute

By Justin Yedor, Stanton Burke, and Jeewon K. Serrato

For businesses awaiting guidance on how to comply with the California Privacy Rights Act (the “CPRA”), the new California Privacy Protection Agency (“CPPA”) began the rulemaking process on September 22, 2021
Continue Reading CPRA Rulemaking Begins with an Invitation by the New California Privacy Protection Agency