The landscape for privacy regulations in the United States has been changing almost weekly. Most recently, Oregon and Delaware joined California in enacting some of the strictest privacy regulations in the country. Now, amid increased public scrutiny regarding privacy regulations and enforcement, courts, too, are taking a closer examination of privacy laws and pumping the
Privacy Regulation
European Commission Proposes New GDPR Procedural Rules for Cross-Border Cases
On July 4 2023, the European Commission presented a Proposal for a Regulation laying down additional procedural rules relating to the enforcement of the General Data Protection Regulation (GDPR) (the Proposal). Divergent enforcement of the GDPR by national Supervisory Authorities (SAs) in cross-border cases – cases that affect individuals located in more than one Member…
Companies Are Ready and Willing to Comply with CCPA – But First, They Need to Know How
Recently, Meegan Brooks, an associate in our San Francisco office, published an article on the California Consumer Privacy Act. Below is an excerpt. You can read the full article here.
Continue Reading Companies Are Ready and Willing to Comply with CCPA – But First, They Need to Know How
Belgium Publishes Draft Law Implementing GDPR
On June 12, Belgium’s Parliament published a draft law on the “protection of natural persons with regard to processing of personal data.”
The draft – comprising 280 Articles – has three objectives:
- Legislate so-called “open clauses” of the General Data Protection Regulation, i. e. those clauses in the Regulation where EU Member States are free
…
Appeals Court Ruling on NSA’s Section 215
On May 7, I appeared on the PBS Newshour to discuss an appeals court ruling on the National Security Agency’s (NSA) program that collects the phone data of millions of Americans. The US Court of Appeals for the Second Circuit found that the program is illegal and not sanction by the Patriot Act.
The full…
Cyber Risks Facing Health Insurers
I recently did a guest a blog for ID Experts regarding the cyber risks facing health insurers in the wake of the Anthem and Premera breaches. The post, “More Health Insurer Data Breaches Are Coming – What Can You Do to Prepare?,” provides an overview of what other health insurers can do to…
Triple Entente Beer Summit
I hope you will join us on Thursday, May 7 from 6:00 pm – 9:00 pm for the “Triple Entente Beer Summit” at The Washington Firehouse (1626 North Capitol Street Northwest, Washington, DC). This live recording of the three podcasts – Steptoe Cyberlaw Podcast, Lawfare Podcast, and Rational Security – will be your chance…
Why the House Information-Sharing Bill Could Actually Deter Information Sharing
The House Intelligence Committee has now adopted a manager’s amendment to what it’s now calling the “Protecting Cyber Networks Act.” Predictably, privacy groups are already inveighing against it.
I fear that the House bill is indeed seriously flawed, but not because it invades privacy. Instead, it appears to pile unworkable new privacy regulations on
…
Snowden Fatigue is Spreading Abroad
If you think Edward Snowden and Glenn Greenwald have stopped attacking NSA, you haven’t been following them closely enough. While American media have largely lost interest in Snowden and Greenwald, the pair continue to campaign outside the United States against the intelligence agency.
Their most ambitious effort was in New Zealand, a member of the…
Inside Europe’s Censorship Machinery
Three months ago, I tried hacking Google’s implementation of Europe’s “right to be forgotten.” For those of you who haven’t followed recent developments in censorship, the right to be forgotten is a European requirement that “irrelevant or outdated” information be excluded from searches about individuals. The doctrine extends even to true information that remains on…