Eye On Privacy

Timely Updates and Analysis on Privacy and Cybersecurity Issues

Blog Authors

AB C DEF G H IJKLM NOPQR S TUVWXYZ

Sarah Aberg

Yaniss Aiche

Brian Anderson

Latest from Eye On Privacy

Eye On Privacy

Proposed CCPA Regs Released, Comments Due Dec. 6

By Craig Cardon, Liisa Thomas, Rachel Tarko Hudson, Kari Rollins, Brian Anderson & Julia Kadish on October 11, 2019

The California attorney general has released draft regulations for CCPA, giving companies further guidance on a variety of topics. The regulations are in draft, and comments are due to the attorney general’s office by December 6, 2019. The AGs office will also be holding a series of hearings across the state, on December 2 (Sacramento), 3 (Los Angeles), 4 (San Francisco), and 5 (Fresno). Among the many items that companies will be examining in more…

Eye On Privacy

A Single Text Message May Not Violate TCPA

By Shannon Petersen, Liisa Thomas, Lisa Yun & Elfin Noce on October 7, 2019

As we reported in our sister blog, “One ‘Chirp, Buzz, Or Blink’ Is Not Enough To Sue Under the TCPA”, a recent court decision makes it more difficult for plaintiffs to establish standing under the Telephone Consumer Protection Act. In its decision, the Eleventh Circuit ruled that a single text message from an attorney to his former client did not amount to sufficient harm to sue in federal court. The Court concluded that…

Eye On Privacy

Modifications Under CCPA To Receipt of Consumer Requests

By Liisa Thomas, Craig Cardon, Rachel Tarko Hudson & Rebecca Mackin on October 3, 2019

One of the CCPA amendments that has gone to the governor’s desk is AB 1564, which addresses the methods companies must make available to consumers to exercise their rights under CCPA. Businesses which operate exclusively online and have direct relationships with their consumers can (1) provide an email address for consumers to submit requests, and (2) if they have a website (which presumably all online businesses would!), have a method for consumers to submit requests…

Eye On Privacy

CNIL Issues Record-Keeping Guidance

By Liisa Thomas, Sylvie Rousseau & Rebecca Mackin on September 30, 2019

Under GDPR, companies are required to keep certain records of their processing activities. There has been some question about the types of records controllers should keep. To help clarify the questions arising from many companies, CNIL issued guidance recently about how to fulfill record keeping obligations. The guidance includes an RPA template for controllers, and outlines contents to include for both controllers and processors. This includes keeping track of why information was collected, the categories of…

Eye On Privacy

Will More Clarity on Definition of ATDS Under TCPA Finally Be Here Soon?

By Shannon Petersen, Liisa Thomas, Lisa Yun & Julia Kadish on September 26, 2019

The Sixth Circuit is the latest court to weigh in on the definition of ATDS under TCPA. The TCPA defines ATDS as equipment that has the capacity “to store or produce telephone numbers to be called, using a random or sequential number generator; and to dial such numbers.” Generally, the TCPA prohibits calls and text messages to cell phones using an ATDS without prior express consent.…

Eye On Privacy

Maryland Adds Insurance Commissioner to Breach Notification Requirements

By Liisa Thomas, Kari Rollins & Julia Kadish on September 23, 2019

Effective October 1, 2019, organizations providing health insurance and related services must notify the Maryland Insurance Administration as part of its breach notification requirements.…

Eye On Privacy

What To Do About Employees Under CCPA: An Update

By Liisa Thomas, Craig Cardon, Rachel Tarko Hudson & Elfin Noce on September 19, 2019

One of the amendments we’ve been watching over the past months is one that impacts rights of employees —both the company’s and other company’s employees. Under AB25, which passed the California Senate and is now awaiting governor signature, companies will be (for a year) exempted from providing current and former employees, job applicants, and contractors with the full suite of CCPA rights. Starting January 2020, however, these individuals must be provided with notice of…

Eye On Privacy

Illinois Joins States Requiring Breach Notice to AG

By Liisa Thomas & Elfin Noce on September 3, 2019

Illinois has updated its breach notice law to require, effective January 1, 2020, notice to the Illinois Attorney General of a data breach involving more than 500 Illinois residents.…

Eye On Privacy

New York SHIELD Act Expands Breach Notice Requirements Starting in October

By Liisa Thomas, Kari Rollins, Elfin Noce & Rebecca Mackin on August 27, 2019

As we recently reported, New York’s new SHIELD Act contains data security provisions. It also contains a number of key changes to New York’s existing breach notification obligations. These changes will become effective October 23, 2019.…

Eye On Privacy

Preparing for New York’s New Data Security Requirements

By Liisa Thomas, Kari Rollins & Elfin Noce on August 26, 2019

New York recently passed the SHIELD Act, which, among other things, newly establishes data security requirements for companies that collect private information about New York residents. The data security protections required by the Act go into effect in March 2020. Companies that are already subject to and compliant with data security requirements under HIPAA, GLBA, or the NYDFS will be deemed compliant with this new law. Between now and March companies will want to think about…

Eye On Privacy

Timely Updates and Analysis on Privacy and Cybersecurity Issues

Blog Authors

Proposed CCPA Regs Released, Comments Due Dec. 6

A Single Text Message May Not Violate TCPA

Modifications Under CCPA To Receipt of Consumer Requests

CNIL Issues Record-Keeping Guidance

Will More Clarity on Definition of ATDS Under TCPA Finally Be Here Soon?

Maryland Adds Insurance Commissioner to Breach Notification Requirements

What To Do About Employees Under CCPA: An Update

Illinois Joins States Requiring Breach Notice to AG

New York SHIELD Act Expands Breach Notice Requirements Starting in October

Preparing for New York’s New Data Security Requirements

Company

Support

New to the Network