The Federal Trade Commission has traditionally responded forcefully to public health and economic crises, and it is doing so again in response to the coronavirus pandemic.  The current crisis does present some additional complications, however, because of its impact on the operations of the agency itself.  Three particular aspects of the FTC’s consumer protection-related response stand out: (1) continuation of the agency’s scrutiny of false and deceptive product claims that seek to capitalize on the…

Last week, the Better Business Bureau’s National Advertising Division (NAD) announced a new expedited process for digital advertising challenges.  The SWIFT (Single Well-defined Issue Fast Track) Process will allow businesses to address concerns of transparency and truthfulness on an accelerated basis, with decisions rendered within twenty business days of case initiation.  The SWIFT process is currently limited to challenges involving one of three issues:  the prominence or sufficiency of disclosures, including disclosure issues in influencer…

The Brazil Senate unanimously approved a bill today that would delay implementation of the Brazil General Law for Data Protection, or LGPD, until January 1, 2021 and enforcement of fines and penalties until August 1, 2021.  The LGPD is currently scheduled to take effect on August 15, 2020. The draft bill — one of four pending in the Senate that propose to delay implementation of the LGPD — is broad in scope, encompassing not only…

On April 2, 2020, the U.S. Department of Health and Human Services (“HHS”) issued a Notification of Enforcement Discretion (the “Notification”) regarding the disclosure of protected health information (“PHI”) to public health authorities and use of PHI to perform analytics for such authorities.  Designed to “facilitate uses and disclosures for public health and health oversight activities during this nationwide public health emergency,” the Notification relaxes HHS’s enforcement of certain provisions of the Privacy Rule issued …

Pan-European Privacy Preserving Proximity Tracing Initiative According to media sources, an EU consortium led by Germany’s Fraunhofer Heinrich Hertz Institute for telecoms (HHI) will soon release software code that can be used to create apps that will help track transmission chains of COVID-19.  The Pan-European Privacy Preserving Proximity Tracing (“PEPP-PT”) project comprises more than 130 members across eight European countries, including scientists, technologists, and experts. The PEPP-PT project has published a manifesto explaining its intention…

On 1 April 2020, the UK Supreme Court handed down its ruling in WM Morrison Supermarkets plc v Various Claimants [2020] UKSC 12.  The Court ruled that Morrisons was not vicariously liable for a data breach deliberately perpetrated by an employee.  The judgment is significant in that it overturned the decisions of the two lower courts (the High Court and Court of Appeal) and provides guidance for employers on when they may be held…

With the adoption of two recent orders, the Federal Communications Commission (“FCC”) continues to implement the TRACED Act.  In the first of these orders, the FCC established a deadline by which certain voice services provides must adopt and implement the SHAKEN/STIR call authentication framework.  In the second of these orders, the FCC established the registration process for an industry “traceback” consortium.  These actions build on the FCC’s prior implementation efforts, which we discussed here and…